Skip to content

Commit 8967622

Browse files
dependabot[bot]DmitriyLewen
dependabot[bot]
and
DmitriyLewen
authored
chore(deps): bump the common group across 1 directory with 20 updates (#9840)
Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: DmitriyLewen <[email protected]>
1 parent e1f3f28 commit 8967622

File tree

2 files changed

+248
-248
lines changed

2 files changed

+248
-248
lines changed

go.mod

Lines changed: 72 additions & 74 deletions
Original file line numberDiff line numberDiff line change
@@ -3,8 +3,8 @@ module github.com/aquasecurity/trivy
33
go 1.25
44

55
require (
6-
github.com/Azure/azure-sdk-for-go/sdk/azcore v1.19.1
7-
github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.12.0
6+
github.com/Azure/azure-sdk-for-go/sdk/azcore v1.20.0
7+
github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.13.1
88
github.com/Azure/azure-sdk-for-go/sdk/containers/azcontainerregistry v0.2.3
99
github.com/BurntSushi/toml v1.5.0
1010
github.com/CycloneDX/cyclonedx-go v0.9.3
@@ -38,8 +38,8 @@ require (
3838
github.com/bmatcuk/doublestar/v4 v4.9.1
3939
github.com/cenkalti/backoff/v4 v4.3.0
4040
github.com/cheggaaa/pb/v3 v3.1.7
41-
github.com/containerd/containerd/v2 v2.1.5
42-
github.com/containerd/platforms v1.0.0-rc.1
41+
github.com/containerd/containerd/v2 v2.2.0
42+
github.com/containerd/platforms v1.0.0-rc.2
4343
github.com/distribution/reference v0.6.0
4444
github.com/docker/cli v28.5.1+incompatible
4545
github.com/docker/docker v28.5.1+incompatible
@@ -49,13 +49,13 @@ require (
4949
github.com/go-git/go-git/v5 v5.16.3
5050
github.com/go-redis/redis/v8 v8.11.5
5151
github.com/go-viper/mapstructure/v2 v2.4.0
52-
github.com/gocsaf/csaf/v3 v3.3.0
52+
github.com/gocsaf/csaf/v3 v3.4.0
5353
github.com/golang-jwt/jwt/v5 v5.3.0
5454
github.com/google/go-containerregistry v0.20.6
5555
github.com/google/go-github/v62 v62.0.0
5656
github.com/google/licenseclassifier/v2 v2.0.0
5757
github.com/google/uuid v1.6.0
58-
github.com/hashicorp/go-getter v1.8.1
58+
github.com/hashicorp/go-getter v1.8.3
5959
github.com/hashicorp/go-multierror v1.1.1
6060
github.com/hashicorp/go-retryablehttp v0.7.8
6161
github.com/hashicorp/go-uuid v1.0.3
@@ -83,7 +83,7 @@ require (
8383
github.com/mitchellh/hashstructure/v2 v2.0.2
8484
github.com/moby/buildkit v0.25.1
8585
github.com/moby/docker-image-spec v1.3.1
86-
github.com/open-policy-agent/opa v1.8.0
86+
github.com/open-policy-agent/opa v1.10.1
8787
github.com/opencontainers/go-digest v1.0.0
8888
github.com/opencontainers/image-spec v1.1.1
8989
github.com/openvex/discovery v0.1.1-0.20240802171711-7c54efc57553
@@ -93,10 +93,10 @@ require (
9393
github.com/quasilyte/go-ruleguard/dsl v0.3.23
9494
github.com/rogpeppe/go-internal v1.14.1
9595
github.com/rust-secure-code/go-rustaudit v0.0.0-20250226111315-e20ec32e963c
96-
github.com/samber/lo v1.51.0
96+
github.com/samber/lo v1.52.0
9797
github.com/sassoftware/go-rpmutils v0.4.0
9898
github.com/secure-systems-lab/go-securesystemslib v0.9.1
99-
github.com/sigstore/rekor v1.4.2
99+
github.com/sigstore/rekor v1.4.3
100100
github.com/sirupsen/logrus v1.9.4-0.20230606125235-dd1b4c2e81af
101101
github.com/sosedoff/gitkit v0.4.0
102102
github.com/spdx/tools-golang v0.5.5 // v0.5.3 with necessary changes. Can be upgraded to version 0.5.4 after release.
@@ -107,29 +107,29 @@ require (
107107
github.com/stretchr/testify v1.11.1
108108
github.com/testcontainers/testcontainers-go v0.38.0
109109
github.com/testcontainers/testcontainers-go/modules/localstack v0.38.0
110-
github.com/tetratelabs/wazero v1.9.0
110+
github.com/tetratelabs/wazero v1.10.1
111111
github.com/twitchtv/twirp v8.1.3+incompatible
112112
github.com/xeipuuv/gojsonschema v1.2.0
113113
github.com/xlab/treeprint v1.2.0
114114
github.com/zalando/go-keyring v0.2.6
115115
github.com/zclconf/go-cty v1.17.0
116116
github.com/zclconf/go-cty-yaml v1.1.0
117117
go.etcd.io/bbolt v1.4.3
118-
golang.org/x/crypto v0.41.0
119-
golang.org/x/mod v0.27.0
120-
golang.org/x/net v0.43.0
121-
golang.org/x/sync v0.17.0
122-
golang.org/x/term v0.35.0
123-
golang.org/x/text v0.28.0
124-
golang.org/x/tools v0.35.1-0.20250728180453-01a3475a31bc
118+
golang.org/x/crypto v0.43.0
119+
golang.org/x/mod v0.30.0
120+
golang.org/x/net v0.46.0
121+
golang.org/x/sync v0.18.0
122+
golang.org/x/term v0.36.0
123+
golang.org/x/text v0.30.0
124+
golang.org/x/tools v0.38.0
125125
golang.org/x/vuln v1.1.4
126126
golang.org/x/xerrors v0.0.0-20240716161551-93cc26a95ae9
127127
google.golang.org/protobuf v1.36.10
128128
gopkg.in/yaml.v3 v3.0.1
129-
helm.sh/helm/v3 v3.19.0
130-
k8s.io/api v0.34.1
129+
helm.sh/helm/v3 v3.19.2
130+
k8s.io/api v0.34.2
131131
k8s.io/utils v0.0.0-20250604170112-4c0f3b243397
132-
modernc.org/sqlite v1.39.0
132+
modernc.org/sqlite v1.40.1
133133
)
134134

135135
require (
@@ -147,32 +147,32 @@ require (
147147
buf.build/go/spdx v0.2.0 // indirect
148148
buf.build/go/standard v0.1.0 // indirect
149149
cel.dev/expr v0.24.0 // indirect
150-
cloud.google.com/go v0.121.4 // indirect
151-
cloud.google.com/go/auth v0.16.5 // indirect
150+
cloud.google.com/go v0.121.6 // indirect
151+
cloud.google.com/go/auth v0.17.0 // indirect
152152
cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect
153-
cloud.google.com/go/compute/metadata v0.8.0 // indirect
154-
cloud.google.com/go/iam v1.5.2 // indirect
153+
cloud.google.com/go/compute/metadata v0.9.0 // indirect
154+
cloud.google.com/go/iam v1.5.3 // indirect
155155
cloud.google.com/go/monitoring v1.24.2 // indirect
156-
cloud.google.com/go/storage v1.55.0 // indirect
156+
cloud.google.com/go/storage v1.56.0 // indirect
157157
connectrpc.com/connect v1.18.1 // indirect
158158
connectrpc.com/otelconnect v0.7.2 // indirect
159159
cyphar.com/go-pathrs v0.2.1 // indirect
160160
dario.cat/mergo v1.0.2 // indirect
161161
github.com/Azure/azure-sdk-for-go/sdk/internal v1.11.2 // indirect
162162
github.com/Azure/go-ansiterm v0.0.0-20250102033503-faa5f7b0171c // indirect
163-
github.com/AzureAD/microsoft-authentication-library-for-go v1.5.0 // indirect
163+
github.com/AzureAD/microsoft-authentication-library-for-go v1.6.0 // indirect
164164
github.com/DataDog/zstd v1.5.5 // indirect
165165
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.29.0 // indirect
166-
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric v0.51.0 // indirect
167-
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping v0.51.0 // indirect
166+
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric v0.53.0 // indirect
167+
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping v0.53.0 // indirect
168168
github.com/Intevation/gval v1.3.0 // indirect
169169
github.com/Intevation/jsonpath v0.2.1 // indirect
170170
github.com/MakeNowJust/heredoc v1.0.0 // indirect
171171
github.com/Masterminds/goutils v1.1.1 // indirect
172172
github.com/Masterminds/semver/v3 v3.4.0 // indirect
173173
github.com/Masterminds/squirrel v1.5.4 // indirect
174174
github.com/Microsoft/go-winio v0.6.2 // indirect
175-
github.com/Microsoft/hcsshim v0.13.0 // indirect
175+
github.com/Microsoft/hcsshim v0.14.0-rc.1 // indirect
176176
github.com/ProtonMail/go-crypto v1.3.0 // indirect
177177
github.com/VividCortex/ewma v1.2.0 // indirect
178178
github.com/agext/levenshtein v1.2.3 // indirect
@@ -211,9 +211,9 @@ require (
211211
github.com/chai2010/gettext-go v1.0.2 // indirect
212212
github.com/cloudflare/circl v1.6.1 // indirect
213213
github.com/cncf/xds/go v0.0.0-20250501225837-2ac532fd4443 // indirect
214-
github.com/containerd/cgroups/v3 v3.0.5 // indirect
214+
github.com/containerd/cgroups/v3 v3.1.0 // indirect
215215
github.com/containerd/containerd v1.7.29 // indirect
216-
github.com/containerd/containerd/api v1.9.0 // indirect
216+
github.com/containerd/containerd/api v1.10.0 // indirect
217217
github.com/containerd/continuity v0.4.5 // indirect
218218
github.com/containerd/errdefs v1.0.0 // indirect
219219
github.com/containerd/errdefs/pkg v0.3.0 // indirect
@@ -239,7 +239,7 @@ require (
239239
github.com/dsnet/compress v0.0.2-0.20230904184137-39efe44ab707 // indirect
240240
github.com/dustin/go-humanize v1.0.1 // indirect
241241
github.com/ebitengine/purego v0.8.4 // indirect
242-
github.com/emicklei/go-restful/v3 v3.12.2 // indirect
242+
github.com/emicklei/go-restful/v3 v3.13.0 // indirect
243243
github.com/emirpasic/gods v1.18.1 // indirect
244244
github.com/envoyproxy/go-control-plane/envoy v1.32.4 // indirect
245245
github.com/envoyproxy/protoc-gen-validate v1.2.1 // indirect
@@ -256,36 +256,36 @@ require (
256256
github.com/go-git/go-billy/v5 v5.6.2 // indirect
257257
github.com/go-gorp/gorp/v3 v3.1.0 // indirect
258258
github.com/go-ini/ini v1.67.0 // indirect
259-
github.com/go-jose/go-jose/v4 v4.1.1 // indirect
259+
github.com/go-jose/go-jose/v4 v4.1.2 // indirect
260260
github.com/go-logr/logr v1.4.3 // indirect
261261
github.com/go-logr/stdr v1.2.2 // indirect
262262
github.com/go-ole/go-ole v1.3.0 // indirect
263-
github.com/go-openapi/analysis v0.23.0 // indirect
264-
github.com/go-openapi/errors v0.22.2 // indirect
265-
github.com/go-openapi/jsonpointer v0.21.0 // indirect
266-
github.com/go-openapi/jsonreference v0.21.0 // indirect
267-
github.com/go-openapi/loads v0.22.0 // indirect
268-
github.com/go-openapi/runtime v0.28.0 // indirect
269-
github.com/go-openapi/spec v0.21.0 // indirect
270-
github.com/go-openapi/strfmt v0.23.0 // indirect
271-
github.com/go-openapi/swag v0.24.1 // indirect
272-
github.com/go-openapi/swag/cmdutils v0.24.0 // indirect
273-
github.com/go-openapi/swag/conv v0.24.0 // indirect
274-
github.com/go-openapi/swag/fileutils v0.24.0 // indirect
275-
github.com/go-openapi/swag/jsonname v0.24.0 // indirect
276-
github.com/go-openapi/swag/jsonutils v0.24.0 // indirect
277-
github.com/go-openapi/swag/loading v0.24.0 // indirect
278-
github.com/go-openapi/swag/mangling v0.24.0 // indirect
279-
github.com/go-openapi/swag/netutils v0.24.0 // indirect
280-
github.com/go-openapi/swag/stringutils v0.24.0 // indirect
281-
github.com/go-openapi/swag/typeutils v0.24.0 // indirect
282-
github.com/go-openapi/swag/yamlutils v0.24.0 // indirect
283-
github.com/go-openapi/validate v0.24.0 // indirect
263+
github.com/go-openapi/analysis v0.24.1 // indirect
264+
github.com/go-openapi/errors v0.22.4 // indirect
265+
github.com/go-openapi/jsonpointer v0.22.1 // indirect
266+
github.com/go-openapi/jsonreference v0.21.3 // indirect
267+
github.com/go-openapi/loads v0.23.2 // indirect
268+
github.com/go-openapi/runtime v0.29.2 // indirect
269+
github.com/go-openapi/spec v0.22.1 // indirect
270+
github.com/go-openapi/strfmt v0.25.0 // indirect
271+
github.com/go-openapi/swag v0.25.1 // indirect
272+
github.com/go-openapi/swag/cmdutils v0.25.1 // indirect
273+
github.com/go-openapi/swag/conv v0.25.1 // indirect
274+
github.com/go-openapi/swag/fileutils v0.25.1 // indirect
275+
github.com/go-openapi/swag/jsonname v0.25.1 // indirect
276+
github.com/go-openapi/swag/jsonutils v0.25.1 // indirect
277+
github.com/go-openapi/swag/loading v0.25.1 // indirect
278+
github.com/go-openapi/swag/mangling v0.25.1 // indirect
279+
github.com/go-openapi/swag/netutils v0.25.1 // indirect
280+
github.com/go-openapi/swag/stringutils v0.25.1 // indirect
281+
github.com/go-openapi/swag/typeutils v0.25.1 // indirect
282+
github.com/go-openapi/swag/yamlutils v0.25.1 // indirect
283+
github.com/go-openapi/validate v0.25.1 // indirect
284284
github.com/gobwas/glob v0.2.3 // indirect
285285
github.com/goccy/go-json v0.10.5 // indirect
286286
github.com/goccy/go-yaml v1.15.23 // indirect
287287
github.com/godbus/dbus/v5 v5.1.0 // indirect
288-
github.com/gofrs/flock v0.12.1 // indirect
288+
github.com/gofrs/flock v0.13.0 // indirect
289289
github.com/gofrs/uuid v4.3.1+incompatible // indirect
290290
github.com/gogo/protobuf v1.3.2 // indirect
291291
github.com/golang-jwt/jwt/v4 v4.5.2 // indirect
@@ -311,26 +311,26 @@ require (
311311
github.com/hashicorp/aws-sdk-go-base/v2 v2.0.0-beta.65 // indirect
312312
github.com/hashicorp/errwrap v1.1.0 // indirect
313313
github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
314-
github.com/hashicorp/go-safetemp v1.0.0 // indirect
315314
github.com/hashicorp/terraform-json v0.27.1 // indirect
316315
github.com/huandu/xstrings v1.5.0 // indirect
317316
github.com/inconshreveable/mousetrap v1.1.0 // indirect
318317
github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 // indirect
319318
github.com/jdx/go-netrc v1.0.0 // indirect
320319
github.com/jedisct1/go-minisign v0.0.0-20230811132847-661be99b8267 // indirect
321320
github.com/jmoiron/sqlx v1.4.0 // indirect
322-
github.com/josharian/intern v1.0.0 // indirect
323321
github.com/json-iterator/go v1.1.12 // indirect
324322
github.com/kevinburke/ssh_config v1.2.0 // indirect
325-
github.com/klauspost/compress v1.18.0 // indirect
323+
github.com/klauspost/compress v1.18.1 // indirect
326324
github.com/klauspost/pgzip v1.2.6 // indirect
327325
github.com/knqyf263/labeler v0.0.0-20200423181506-7a6e545148c3 // indirect
328326
github.com/lann/builder v0.0.0-20180802200727-47ae307949d0 // indirect
329327
github.com/lann/ps v0.0.0-20150810152359-62de8c46ede0 // indirect
330328
github.com/lestrrat-go/blackmagic v1.0.4 // indirect
329+
github.com/lestrrat-go/dsig v1.0.0 // indirect
330+
github.com/lestrrat-go/dsig-secp256k1 v1.0.0 // indirect
331331
github.com/lestrrat-go/httpcc v1.0.1 // indirect
332332
github.com/lestrrat-go/httprc/v3 v3.0.1 // indirect
333-
github.com/lestrrat-go/jwx/v3 v3.0.10 // indirect
333+
github.com/lestrrat-go/jwx/v3 v3.0.11 // indirect
334334
github.com/lestrrat-go/option v1.0.1 // indirect
335335
github.com/lestrrat-go/option/v2 v2.0.0 // indirect
336336
github.com/letsencrypt/boulder v0.0.0-20240620165639-de9c06129bec // indirect
@@ -339,7 +339,6 @@ require (
339339
github.com/lufia/plan9stats v0.0.0-20240226150601-1dcf7310316a // indirect
340340
github.com/lunixbochs/struc v0.0.0-20200707160740-784aaebc1d40 // indirect
341341
github.com/magiconair/properties v1.8.10 // indirect
342-
github.com/mailru/easyjson v0.9.0 // indirect
343342
github.com/mattn/go-colorable v0.1.14 // indirect
344343
github.com/mattn/go-isatty v0.0.20 // indirect
345344
github.com/mattn/go-runewidth v0.0.16 // indirect
@@ -372,7 +371,6 @@ require (
372371
github.com/onsi/gomega v1.36.3 // indirect
373372
github.com/opencontainers/runtime-spec v1.2.1 // indirect
374373
github.com/opencontainers/selinux v1.13.0 // indirect
375-
github.com/opentracing/opentracing-go v1.2.0 // indirect
376374
github.com/owenrumney/squealer v1.2.11 // indirect
377375
github.com/pandatix/go-cvss v0.6.2 // indirect
378376
github.com/pelletier/go-toml v1.9.5 // indirect
@@ -447,9 +445,9 @@ require (
447445
go.lsp.dev/pkg v0.0.0-20210717090340-384b27a52fb2 // indirect
448446
go.lsp.dev/protocol v0.12.0 // indirect
449447
go.lsp.dev/uri v0.3.0 // indirect
450-
go.mongodb.org/mongo-driver v1.14.0 // indirect
448+
go.mongodb.org/mongo-driver v1.17.6 // indirect
451449
go.opencensus.io v0.24.0 // indirect
452-
go.opentelemetry.io/auto/sdk v1.1.0 // indirect
450+
go.opentelemetry.io/auto/sdk v1.2.1 // indirect
453451
go.opentelemetry.io/contrib/detectors/gcp v1.36.0 // indirect
454452
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 // indirect
455453
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.63.0 // indirect
@@ -468,31 +466,31 @@ require (
468466
go.yaml.in/yaml/v2 v2.4.2 // indirect
469467
go.yaml.in/yaml/v3 v3.0.4 // indirect
470468
golang.org/x/exp v0.0.0-20250718183923-645b1fa84792 // indirect
471-
golang.org/x/oauth2 v0.30.0 // indirect
472-
golang.org/x/sys v0.36.0 // indirect
473-
golang.org/x/telemetry v0.0.0-20250807160809-1a19826ec488 // indirect
474-
golang.org/x/time v0.13.0 // indirect
475-
golang.org/x/tools/gopls v0.20.0 // indirect
476-
google.golang.org/api v0.248.0 // indirect
469+
golang.org/x/oauth2 v0.32.0 // indirect
470+
golang.org/x/sys v0.37.0 // indirect
471+
golang.org/x/telemetry v0.0.0-20251008203120-078029d740a8 // indirect
472+
golang.org/x/time v0.14.0 // indirect
473+
golang.org/x/tools/gopls v0.0.0-20251008221726-a22b5e8a9b8d // indirect
474+
google.golang.org/api v0.254.0 // indirect
477475
google.golang.org/genproto v0.0.0-20250603155806-513f23925822 // indirect
478476
google.golang.org/genproto/googleapis/api v0.0.0-20250825161204-c5933d9347a5 // indirect
479-
google.golang.org/genproto/googleapis/rpc v0.0.0-20250825161204-c5933d9347a5 // indirect
480-
google.golang.org/grpc v1.75.1 // indirect
477+
google.golang.org/genproto/googleapis/rpc v0.0.0-20251022142026-3a174f9686a8 // indirect
478+
google.golang.org/grpc v1.76.0 // indirect
481479
gopkg.in/cheggaaa/pb.v1 v1.0.28 // indirect
482480
gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
483481
gopkg.in/inf.v0 v0.9.1 // indirect
484482
gopkg.in/warnings.v0 v0.1.2 // indirect
485483
gopkg.in/yaml.v2 v2.4.0 // indirect
486484
k8s.io/apiextensions-apiserver v0.34.0 // indirect
487-
k8s.io/apimachinery v0.34.1 // indirect
485+
k8s.io/apimachinery v0.34.2 // indirect
488486
k8s.io/apiserver v0.34.0 // indirect
489487
k8s.io/cli-runtime v0.34.0 // indirect
490-
k8s.io/client-go v0.34.0 // indirect
488+
k8s.io/client-go v0.34.1 // indirect
491489
k8s.io/component-base v0.34.0 // indirect
492490
k8s.io/klog/v2 v2.130.1 // indirect
493491
k8s.io/kube-openapi v0.0.0-20250710124328-f3f2b991d03b // indirect
494492
k8s.io/kubectl v0.34.0 // indirect
495-
modernc.org/libc v1.66.3 // indirect
493+
modernc.org/libc v1.66.10 // indirect
496494
modernc.org/mathutil v1.7.1 // indirect
497495
modernc.org/memory v1.11.0 // indirect
498496
mvdan.cc/sh/v3 v3.11.0 // indirect

0 commit comments

Comments
 (0)