Releases: stackrox/scanner
Releases · stackrox/scanner
2.6.0
- Return exact (x.y.z) .NET Core runtime and ASP.NET Core runtime versions (opposed to x.y)
- Reduce false-positive rate of Java and Ruby vulnerabilities
2.5.0
- Turn on ROX_CONTINUE_UNKNOWN_OS by default
- Use Red Hat's CVSS scores for RHEL/CentOS-based images
- Add .NET Core Runtime application-level support
2.4.0
- Add Image Scan notes
- Fix image severity labels
- Make cpe check deterministic
2.3.3
Fix change which disabled LANGUAGE_VULNS in favor of ROX_LANGUAGE_VULNS. Now both are allowed, but ROX_LANGUAGE_VULNS takes precedence.
2.3.2
Update Amazon support
Update Oracle and Red Hat support
[ROX-5374] Add support for continuing upon unknown OS
[ROX-5382] update alpine vuln src
[ROX-5394] Fix potential resource not found error in features
[ROX-5392] Add RHEL6 unpublished oval
Update genesis dump
2.3.1
[ROX-5341] NVD cache does not un-associate CVEs and products upon deletion
2.3.0
Several fixes + Update of Genesis Dump
[DO NOT USE] 2.2.13
[ROX-5162] Remove error messages for duplicate layers (#177)
[ROX-5165] Bubble up information about potential solution for RPM issue (#179)
Handle shutdowns gracefully (#180)
2.2.11
Fixes RHSA-2020:2637 in scanner-rhel
