Skip to content

chore: bump up Trivy to version v0.69.1#2875

Merged
simar7 merged 2 commits intoaquasecurity:mainfrom
afdesk:chore/bump-trivy-v0.69.1
Feb 6, 2026
Merged

chore: bump up Trivy to version v0.69.1#2875
simar7 merged 2 commits intoaquasecurity:mainfrom
afdesk:chore/bump-trivy-v0.69.1

Conversation

@afdesk
Copy link
Copy Markdown
Contributor

@afdesk afdesk commented Feb 6, 2026
edited
Loading

Description

It bumps up Trivy to version v0.69.1.

Also this PR bumps up Go version to 1.25.7 to fix CVE-2025-68121.

Before:

Report Summary

┌─────────────────────────────────────────────────────────┬──────────┬─────────────────┬─────────┐
│                         Target                          │   Type   │ Vulnerabilities │ Secrets │
├─────────────────────────────────────────────────────────┼──────────┼─────────────────┼─────────┤
│ docker.io/afdesk/trivy-operator:v0.69.1 (alpine 3.23.3) │  alpine  │        0        │    -    │
├─────────────────────────────────────────────────────────┼──────────┼─────────────────┼─────────┤
│ usr/local/bin/trivy-operator                            │ gobinary │        1        │    -    │
└─────────────────────────────────────────────────────────┴──────────┴─────────────────┴─────────┘
Legend:
- '-': Not scanned
- '0': Clean (no security findings detected)


usr/local/bin/trivy-operator (gobinary)

Total: 1 (UNKNOWN: 1, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

┌─────────┬────────────────┬──────────┬────────┬───────────────────┬──────────────────────────────┬──────────────────────────────────────────────────────────┐
│ Library │ Vulnerability  │ Severity │ Status │ Installed Version │        Fixed Version         │                          Title                           │
├─────────┼────────────────┼──────────┼────────┼───────────────────┼──────────────────────────────┼──────────────────────────────────────────────────────────┤
│ stdlib  │ CVE-2025-68121 │ UNKNOWN  │ fixed  │ v1.25.6           │ 1.24.13, 1.25.7, 1.26.0-rc.3 │ [crypto/tls: Config.Clone copies automatically generated │
│         │                │          │        │                   │                              │ session ticket keys, session resumption does not...      │
│         │                │          │        │                   │                              │ https://avd.aquasec.com/nvd/cve-2025-68121               │
└─────────┴────────────────┴──────────┴────────┴───────────────────┴──────────────────────────────┴──────────────────────────────────────────────────────────┘

After:

% trivy i -q --cache-backend memory docker.io/afdesk/trivy-operator:v0.69.1

Report Summary

┌─────────────────────────────────────────────────────────┬──────────┬─────────────────┬─────────┐
│                         Target                          │   Type   │ Vulnerabilities │ Secrets │
├─────────────────────────────────────────────────────────┼──────────┼─────────────────┼─────────┤
│ docker.io/afdesk/trivy-operator:v0.69.1 (alpine 3.23.3) │  alpine  │        0        │    -    │
├─────────────────────────────────────────────────────────┼──────────┼─────────────────┼─────────┤
│ usr/local/bin/trivy-operator                            │ gobinary │        0        │    -    │
└─────────────────────────────────────────────────────────┴──────────┴─────────────────┴─────────┘
Legend:
- '-': Not scanned
- '0': Clean (no security findings detected)

Checklist

  • I've read the guidelines for contributing to this repository.
  • I've added tests that prove my fix is effective or that my feature works.
  • I've updated the documentation with the relevant information (if needed).
  • I've added usage information (if the PR introduces new options)
  • I've included a "before" and "after" example to the description (if the PR is a user interface change).

@github-actions github-actions bot added the misc label Feb 6, 2026
@afdesk afdesk marked this pull request as ready for review February 6, 2026 09:03
@afdesk afdesk requested a review from simar7 as a code owner February 6, 2026 09:03
@simar7 simar7 merged commit f42ec9f into aquasecurity:main Feb 6, 2026
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@simar7 simar7 simar7 approved these changes

Assignees

No one assigned

Labels

misc

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@afdesk @simar7