Update module github.com/aquasecurity/trivy to v0.68.2

[renovate]

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
github.com/aquasecurity/trivy	v0.50.1 → v0.68.2

---

Release Notes

aquasecurity/trivy (github.com/aquasecurity/trivy)

v0.68.2

Compare Source

Changelog

• 0c40a8d release: v0.68.2 [release/v0.68] (#​9950)
• db28945 fix(deps): bump alpine from 3.22.1 to 3.23.0 [backport: release/v0.68] (#​9949)

v0.68.1

Compare Source

👉 Trivy v0.68.1 release notes (click here)

[!NOTE]
v0.68.0 was skipped due to issues with the release.

⬇️ Download Trivy

• MacOS Apple Silicon
• MacOS Intel
• Linux Intel
• Linux ARM
• Windows Intel

🐳 Docker Install

• docker pull get.trivy.dev/image/trivy:0.68.1

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0680-2025-12-02

v0.68.0

Compare Source

v0.67.2

Compare Source

Changelog

• 60c57ad release: v0.67.2 [release/v0.67] (#​9639)
• f3ee80c fix: Use fetch-level: 1 to check out trivy-repo in the release workflow [backport: release/v0.67] (#​9638)

v0.67.1

Compare Source

Changelog

• cbed239 release: v0.67.1 [release/v0.67] (#​9614)
• 1a84093 fix: restore compatibility for google.protobuf.Value [backport: release/v0.67] (#​9631)
• 3bc1490 fix: using SrcVersion instead of Version for echo detector [backport: release/v0.67] (#​9629)
• 542eee7 fix: add buildInfo for BlobInfo in rpc package [backport: release/v0.67] (#​9615)
• f65dd05 fix(vex): don't use reused BOM [backport: release/v0.67] (#​9612)

v0.67.0

Compare Source

👉 Trivy v0.67.0 release notes (click here)

⬇️ Download Trivy

• MacOS Apple Silicon
• MacOS Intel
• Linux Intel
• Linux ARM
• Windows Intel

🐳 New Docker Install option

• docker pull get.trivy.dev/image/trivy:0.67.0

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0670-2025-09-30

v0.66.0

Compare Source

👉 Trivy v.66.0 release notes (click here)

⬇️ Download Trivy

• MacOS Apple Silicon
• MacOS Intel
• Linux Intel
• Linux ARM
• Windows Intel

Full changelog

v0.65.0

Compare Source

👉 Trivy v.65.0 release notes (click here)

⬇️ Download Trivy

• MacOS Apple Silicon
• MacOS Intel
• Linux Intel
• Linux ARM
• Windows Intel

Full changelog

v0.64.1

Compare Source

Changelog

• 86ee3c1 release: v0.64.1 [release/v0.64] (#​9122)
• 4e12722 fix(misconf): skip rewriting expr if attr is nil [backport: release/v0.64] (#​9127)
• 9a7d384 fix(cli): Add more non-sensitive flags to telemetry [backport: release/v0.64] (#​9124)
• 53adfba fix(rootio): check full version to detect root.io packages [backport: release/v0.64] (#​9120)
• 8cf1bf9 fix(alma): parse epochs from rpmqa file [backport: release/v0.64] (#​9119)

v0.64.0

Compare Source

👉 Trivy v.64.0 release notes (click here)

⬇️ Download Trivy

• MacOS Apple Silicon
• MacOS Intel
• Linux Intel
• Linux ARM
• Windows Intel

Full changelog

v0.63.0

Compare Source

👉 Trivy v.63.0 release notes (click here)

⬇️ Download Trivy

• MacOS Apple Silicon
• MacOS Intel
• Linux Intel
• Linux ARM
• Windows Intel

Full changelog

v0.62.1

Compare Source

Changelog

• c75ed21 release: v0.62.1 [release/v0.62] (#​8825)
• aafebeb chore(deps): bump the common group across 1 directory with 10 updates [backport: release/v0.62] (#​8831)
• 99485cf fix(misconf): check if for-each is known when expanding dyn block [backport: release/v0.62] (#​8826)
• b4fc9e8 fix(redhat): trim invalid suffix from content_sets in manifest parsing [backport: release/v0.62] (#​8824)

v0.62.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/8801

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0620-2025-04-30

v0.61.1

Compare Source

Changelog

• 7d3b4ff release: v0.61.1 [release/v0.61] (#​8704)
• 80d120f fix(k8s): skip passed misconfigs for the summary report [backport: release/v0.61] (#​8748)
• 9d6290b fix(k8s): correct compare artifact versions [backport: release/v0.61] (#​8699)
• 3799ebb test: use aquasecurity repository for test images [backport: release/v0.61] (#​8698)

v0.61.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/8639

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0610-2025-03-28

v0.60.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/8495

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0600-2025-03-05

v0.59.1

Compare Source

Changelog

• 9aabfd2 release: v0.59.1 [release/v0.59] (#​8334)
• 412c690 fix(misconf): do not log scanners when misconfig scanning is disabled [backport: release/v0.59] (#​8349)
• 98f9ba2 chore(deps): bump Go to v1.23.5 [backport: release/v0.59] (#​8343)
• 1741fdd fix(python): add poetry v2 support [backport: release/v0.59] (#​8335)
• 3fd8e27 fix(sbom): preserve OS packages from multiple SBOMs [backport: release/v0.59] (#​8333)

v0.59.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/8312

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0590-2025-01-30

v0.58.2

Compare Source

Changelog

• 936f06a release: v0.58.2 [release/v0.58] (#​8216)
• f72d2bc fix(misconf): allow null values only for tf variables [backport: release/v0.58] (#​8238)
• 2896367 fix(suse): SUSE - update OSType constants and references for compatility [backport: release/v0.58] (#​8237)
• b733ecc fix: CVE-2025-21613 and CVE-2025-21614 : go-git: argument injection via the URL field [backport: release/v0.58] (#​8215)

v0.58.1

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/8171

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.58/CHANGELOG.md#0581-2024-12-24

v0.58.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/8039

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0580-2024-12-02

v0.57.1

Compare Source

⚡Release highlights and summary⚡

👉https://redirect.github.com/aquasecurity/trivy/discussions/7951

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.57/CHANGELOG.md#0571-2024-11-18

v0.57.0

Compare Source

⚡Release highlights and summary⚡

👉https://redirect.github.com/aquasecurity/trivy/discussions/7857

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0570-2024-10-31

v0.56.2

Compare Source

Changelog

• f2252c8 release: v0.56.2 [release/v0.56] (#​7694)
• f6700ec fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (#​7702)
• 25d2540 fix(sbom): add options for DBs in private registries [backport: release/v0.56] (#​7691)

v0.56.1

Compare Source

Changelog

• 95dbf11 release: v0.56.1 [release/v0.56] (#​7648)
• 5dbdadf fix(db): fix javadb downloading error handling [backport: release/v0.56] (#​7646)

v0.56.0

Compare Source

⚡Release highlights and summary⚡

👉https://redirect.github.com/aquasecurity/trivy/discussions/7640

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0560-2024-10-03

v0.55.2

Compare Source

Changelog

• 928c7c0 release: v0.55.2 [release/v0.55] (#​7523)
• 14a058f fix(java): use dependencyManagement from root/child pom's for dependencies from parents [backport: release/v0.55] (#​7521)
• 990bc4e chore(deps): bump alpine from 3.20.0 to 3.20.3 [backport: release/v0.55] (#​7516)

v0.55.1

Compare Source

⚡Release highlights and summary⚡

👉https://redirect.github.com/aquasecurity/trivy/discussions/7494

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.55/CHANGELOG.md#0551-2024-09-12

v0.55.0

Compare Source

⚡Release highlights and summary⚡

👉https://redirect.github.com/aquasecurity/trivy/discussions/7440

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0550-2024-09-03

v0.54.1

Compare Source

Changelog

• 854c61d release: v0.54.1 [release/v0.54] (#​7282)
• 334a1c2 fix(flag): incorrect behavior for deprected flag --clear-cache [backport: release/v0.54] (#​7285)
• f61725c fix(java): Return error when trying to find a remote pom to avoid segfault [backport: release/v0.54] (#​7283)
• a7b7117 fix(plugin): do not call GitHub content API for releases and tags [backport: release/v0.54] (#​7279)

v0.54.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/7268

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0540-2024-07-30

v0.53.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/7061

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0530-2024-07-01

v0.52.2

Compare Source

Changelog

• 8709d4f release: v0.52.2 [release/v0.52] (#​6896)
• a4b8ad7 ci: use ubuntu-latest-m runner [backport: release/v0.52] (#​6933)
• 2b711bc chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 [backport: release/v0.52] (#​6919)
• 191d31e test: bump docker API to 1.45 [backport: release/v0.52] (#​6922)
• 3f5874c ci: bump github.com/goreleaser/goreleaser to v2.0.0 [backport: release/v0.52] (#​6893)
• 8f8c76a fix(debian): take installed files from the origin layer [backport: release/v0.52] (#​6892)

v0.52.1

Compare Source

Changelog

• a3caf06 release: v0.52.1 [release/v0.52] (#​6877)
• 01dbb42 fix(nodejs): fix infinite loop when package link from package-lock.json file is broken [backport: release/v0.52] (#​6888)
• f186d22 fix(sbom): don't overwrite srcEpoch when decoding SBOM files [backport: release/v0.52] (#​6881)
• 093c0ae fix(python): compare pkg names from poetry.lock and pyproject.toml in lowercase [backport: release/v0.52] (#​6878)
• 6bfda76 Merge pull request #​6879 from aquasecurity/backport-pr-6864-to-release/v0.52
• 53850c8 docs: explain how VEX is applied (#​6864)
• 2211962 Merge pull request #​6875 from aquasecurity/backport-pr-6857-to-release/v0.52
• a614b69 fix(nodejs): fix infinity loops for pnpm with cyclic imports (#​6857)

v0.52.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/6838

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0520-2024-06-03

v0.51.4

Changelog

• c06f467 chore: downgrade trivy-checks and trivy-aws
• df4f760 build: use main package instead of main.go (#​6766)
• bf7a8ed chore(deps): bump the common group across 1 directory with 29 updates (#​6756)
• acb22c6 chore(deps): bump the aws group with 8 updates (#​6738)
• 9a3510f chore(deps): bump the docker group with 2 updates (#​6739)
• 7806b37 ci: add generic dir to deb deploy script (#​6636)

v0.51.2

Compare Source

Changelog

• eadc6fb fix: node-collector high and critical cves (#​6707)
• cc489b1 Merge pull request from GHSA-xcq4-m2r3-cmrj
• 013f71a chore: auto-bump golang patch versions (#​6711)
• 113a5b2 fix(misconf): don't shift ignore rule related to code (#​6708)
• 733e5ac fix(go): include only .version|.ver (no prefixes) ldflags for gobinaries (#​6705)
• d311e49 fix(go): add only non-empty root modules for gobinaries (#​6710)
• cf1a7bf refactor: unify package addition and vulnerability scanning (#​6579)
• d465d9d fix: Golang version parsing from binaries w/GOEXPERIMENT (#​6696)
• 0af225c fix(conda): add support pip deps for environment.yml files (#​6675)
• 6f64d55 fix(misconf): skip Rego errors with a nil location (#​6666)
• 8c27430 fix(misconf): skip Rego errors with a nil location (#​6638)
• c2b46d3 refactor: unify Library and Package structs (#​6633)
• 4368f11 fix: use of specified context to obtain cluster name (#​6645)
• 5ec62f8 docs: fix usage of image-config-scanners (#​6635)

v0.51.1

Compare Source

Changelog

• 8016b82 fix(fs): handle default skip dirs properly (#​6628)
• 7a25dad fix(misconf): load cached tf modules (#​6607)
• 9c794c0 fix(misconf): do not use semver for parsing tf module versions (#​6614)

v0.51.0

Compare Source

⚡Release highlights and summary⚡

👉 https://redirect.github.com/aquasecurity/trivy/discussions/6622

Changelog

• 14c1024 refactor: move setting scanners when using compliance reports to flag parsing (#​6619)
• 998f750 feat: introduce package UIDs for improved vulnerability mapping (#​6583)
• 770b141 perf(misconf): Improve cause performance (#​6586)
• 3ccb1a0 docs: trivy-k8s new experiance remove un-used section (#​6608)
• 58cfd1b chore(deps): bump github.com/docker/docker from 26.0.1+incompatible to 26.0.2+incompatible (#​6612)
• 715963d docs: remove mention of GitLab Gold because it doesn't exist anymore (#​6609)
• 37da98d feat(misconf): Use updated terminology for misconfiguration checks (#​6476)
• cdee703 chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.15 to 1.16.15 (#​6593)
• 6a2225b docs: use generic link from trivy-repo (#​6606)
• a2a02de docs: update trivy k8s with new experience (#​6465)
• e739ab8 feat: support --skip-images scanning flag (#​6334)
• c6d5d85 BREAKING: add support for k8s disable-node-collector flag (#​6311)
• 194a814 chore(deps): bump github.com/zclconf/go-cty from 1.14.1 to 1.14.4 (#​6601)
• 03830c5 chore(deps): bump github.com/sigstore/rekor from 1.2.2 to 1.3.6 (#​6599)
• 8e814fa chore(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.0 (#​6597)
• 2dc76ba chore(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 (#​6588)
• c17176b chore(deps): bump github.com/testcontainers/testcontainers-go from 0.28.0 to 0.30.0 (#​6595)
• bce70af chore(deps): bump github.com/open-policy-agent/opa from 0.62.0 to 0.64.1 (#​6596)
• 4369a19 feat: add ubuntu 23.10 and 24.04 support (#​6573)
• 5566548 chore(deps): bump azure/setup-helm from 3.5 to 4 (#​6590)
• a8af76a chore(deps): bump actions/checkout from 4.1.2 to 4.1.4 (#​6587)
• c8ed432 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ecr from 1.24.6 to 1.27.4 (#​6598)
• 551a46e docs(go): add stdlib (#​6580)
• 261649b chore(deps): bump github.com/containerd/containerd from 1.7.13 to 1.7.16 (#​6592)
• acfddd4 chore(deps): bump github.com/go-openapi/runtime from 0.27.1 to 0.28.0 (#​6600)
• 419e3d2 feat(go): parse main mod version from build info settings (#​6564)
• f0961d5 feat: respect custom exit code from plugin (#​6584)
• a5d485c docs: add asdf and mise installation method (#​6063)
• 29b8faf feat(vuln): Handle scanning conan v2.x lockfiles (#​6357)
• e3bef02 feat: add support environment.yaml files (#​6569)
• 916f6c6 fix: close plugin.yaml (#​6577)
• 8e6cd0e fix: trivy k8s avoid deleting non-default node collector namespace (#​6559)
• 060d0bb BREAKING: support exclude kinds/namespaces and include kinds/namespaces (#​6323)
• 2d090ef feat(go): add main module (#​6574)
• 6343e4f feat: add relationships (#​6563)
• a018ee1 ci: disable Go cache for reusable-release.yaml (#​6572)
• 5da053f docs: mention --show-suppressed is available in table (#​6571)
• 3d66cb8 chore: fix sqlite to support loong64 (#​6511)
• 9aca98c fix(debian): sort dpkg info before parsing due to exclude directories (#​6551)
• 7811ad0 docs: update info about config file (#​6547)
• fae710d docs: remove RELEASE_VERSION from trivy.repo (#​6546)
• d2d4022 fix(sbom): change error to warning for multiple OSes (#​6541)
• 164b025 fix(vuln): skip empty versions (#​6542)
• 5dd9bd4 feat(c): add license support for conan lock files (#​6329)
• 7c2017f fix(terraform): Attribute and fileset fixes (#​6544)
• 63c9469 refactor: change warning if no vulnerability details are found (#​6230)
• aa822c2 refactor(misconf): improve error handling in the Rego scanner (#​6527)
• 30cc88f ci: use tmp dir inside Trivy repo dir for GoReleaser (#​6533)
• e32215c feat(go): parse main module of go binary files (#​6530)
• d4da83c chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (#​6526)
• 0d7d97d refactor(misconf): simplify the retrieval of module annotations (#​6528)
• 9873cf3 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (#​6523)
• 95c8fd9 docs(nodejs): add info about supported versions of pnpm lock files (#​6510)
• 12ec0df feat(misconf): loading embedded checks as a fallback (#​6502)
• 9b7d713 fix(misconf): Parse JSON k8s manifests properly (#​6490)
• 13e72ec refactor: remove parallel walk (#​5180)
• a986199 fix: close pom.xml (#​6507)
• 46d5aba fix(secret): convert severity for custom rules (#​6500)
• 34ab09d fix(java): update logic to detect pom.xml file snapshot artifacts from remote repositories (#​6412)
• 1ba5b59 fix: typo (#​6283)
• 4fab0f8 docs(k8s,image): fix command-line syntax issues (#​6403)
• d770981 chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (#​6435)
• 4337068 fix(misconf): avoid panic if the scheme is not valid (#​6496)
• d82d6cb feat(image): goversion as stdlib (#​6277)
• cfddfb3 fix: add color for error inside of log message (#​6493)
• dfcb0f9 chore(deps): bump actions/add-to-project from 0.4.1 to 1.0.0 (#​6438)
• 183eaaf docs: fix links to OPA docs (#​6480)
• 94d6e8c refactor: replace zap with slog (#​6466)
• 336c47e docs: update links to IaC schemas (#​6477)
• 06b4473 chore: bump Go to 1.22 (#​6075)
• a51cedd refactor(terraform): sync funcs with Terraform (#​6415)
• 53517d6 feat(misconf): add helm-api-version and helm-kube-version flag (#​6332)
• ad544e9 chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.4.0 to 1.5.1 (#​6426)
• 089368d chore(deps): bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 (#​6452)
• 1163565 chore(deps): bump github.com/hashicorp/golang-lru/v2 from 2.0.6 to 2.0.7 (#​6430)
• 637da2b chore(deps): bump aquaproj/aqua-installer from 2.2.0 to 3.0.0 (#​6437)
• 13190e9 fix(terraform): eval submodules (#​6411)
• 6bca7c3 refactor(terraform): remove unused options (#​6446)
• 8e4279b refactor(terraform): remove unused file (#​6445)
• e98c873 chore(deps): bump github.com/testcontainers/testcontainers-go to v0.28.0 (#​6387)
• b1c2eab chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.0 to 1.10.0 (#​6427)
• 1c49a16 fix(misconf): Escape template value correctly (#​6292)
• 8dd0fcd feat(misconf): add support for wildcard ignores (#​6414)
• 74e4c6e fix(cloudformation): resolve DedicatedMasterEnabled parsing issue (#​6439)
• 245c120 refactor(terraform): remove metrics collection (#​6444)
• 86714bf feat(cloudformation): add support for logging and endpoint access for EKS (#​6440)
• a758392 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.53.1 (#​6424)
• 4d00d8b chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.10 (#​6428)
• 3ad2b3e chore(deps): bump go.etcd.io/bbolt from 1.3.8 to 1.3.9 (#​6429)
• 8baccd7 fix(db): check schema version for image name only (#​6410)
• e75a90f chore(deps): bump github.com/google/wire from 0.5.0 to 0.6.0 (#​6425)
• 6625bd3 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.149.1 to 1.155.1 (#​6433)
• 826fe60 chore(deps): bump actions/cache from 4.0.0 to 4.0.2 (#​6436)
• f23ed77 feat(misconf): Support private registries for misconf check bundle (#​6327)
• df024e8 feat(cloudformation): inline ignore support for YAML templates (#​6358)
• 29dee32 feat(terraform): ignore resources by nested attributes (#​6302)
• 1a67472 perf(helm): load in-memory files (#​6383)
• 09e37b7 feat(aws): apply filter options to result (#​6367)
• 87a9aa6 feat(aws): quiet flag support (#​6331)
• 712dcd3 fix(misconf): clear location URI for SARIF (#​6405)
• 625f22b test(cloudformation): add CF tests (#​6315)
• 6a2f6fd fix(cloudformation): infer type after resolving a function (#​6406)

v0.50.4

Note

v0.50.3 hads a critical problem, and we deleted it and released v0.50.4.

Changelog

• e47fd48 fix(sbom): change error to warning for multiple OSes (#​6541)

v0.50.2

Compare Source

Changelog

• 9aa9e17 ci: use tmp dir inside Trivy repo dir for GoReleaser (#​6533)
• 058f483 chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (#​6526)
• 9e3d2c5 chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (#​6523)
• 2ad8e33 fix(java): update logic to detect pom.xml file snapshot artifact

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 179 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.21.0 -> 1.24.1
github.com/aquasecurity/trivy-db	v0.0.0-20231005141211-4fc651f7ac8d -> v0.0.0-20250227071930-8bd8a9b89e2d
modernc.org/sqlite	v1.29.4 -> v1.35.0
cloud.google.com/go	v0.112.0 -> v0.116.0
cloud.google.com/go/compute	v1.23.3 -> v1.29.0
cloud.google.com/go/compute/metadata	v0.2.3 -> v0.6.0
cloud.google.com/go/iam	v1.1.5 -> v1.2.2
github.com/Azure/azure-sdk-for-go/sdk/azcore	v1.9.0 -> v1.17.0
github.com/Azure/azure-sdk-for-go/sdk/azidentity	v1.4.0 -> v1.8.2
github.com/Azure/azure-sdk-for-go/sdk/internal	v1.5.0 -> v1.10.0
github.com/Azure/go-ansiterm	v0.0.0-20210617225240-d185dfc1b5a1 -> v0.0.0-20230124172434-306776ec8161
github.com/AzureAD/microsoft-authentication-library-for-go	v1.1.1 -> v1.3.3
github.com/BurntSushi/toml	v1.3.2 -> v1.4.0
github.com/CycloneDX/cyclonedx-go	v0.8.0 -> v0.9.2
github.com/Masterminds/semver/v3	v3.2.1 -> v3.3.0
github.com/Masterminds/sprig/v3	v3.2.3 -> v3.3.0
github.com/Microsoft/go-winio	v0.6.1 -> v0.6.2
github.com/Microsoft/hcsshim	v0.11.4 -> v0.12.9
github.com/ProtonMail/go-crypto	v1.1.0-alpha.0 -> v1.1.5
github.com/agnivade/levenshtein	v1.1.1 -> v1.2.0
github.com/aquasecurity/go-npm-version	v0.0.0-20201110091526-0b796d180798 -> v0.0.1
github.com/aquasecurity/go-pep440-version	v0.0.0-20210121094942-22b2f8951d46 -> v0.0.1
github.com/aquasecurity/go-version	v0.0.0-20210121072130-637058cfe492 -> v0.0.1
github.com/aws/aws-sdk-go	v1.49.21 -> v1.55.6
github.com/aws/aws-sdk-go-v2	v1.25.2 -> v1.36.3
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream	v1.6.1 -> v1.6.10
github.com/aws/aws-sdk-go-v2/config	v1.27.4 -> v1.29.8
github.com/aws/aws-sdk-go-v2/credentials	v1.17.4 -> v1.17.61
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	v1.15.2 -> v1.16.30
github.com/aws/aws-sdk-go-v2/feature/s3/manager	v1.15.15 -> v1.17.10
github.com/aws/aws-sdk-go-v2/internal/configsources	v1.3.2 -> v1.3.34
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	v2.6.2 -> v2.6.34
github.com/aws/aws-sdk-go-v2/internal/ini	v1.8.0 -> v1.8.3
github.com/aws/aws-sdk-go-v2/internal/v4a	v1.3.2 -> v1.3.34
github.com/aws/aws-sdk-go-v2/service/ebs	v1.21.7 -> v1.22.1
github.com/aws/aws-sdk-go-v2/service/ec2	v1.149.1 -> v1.206.0
github.com/aws/aws-sdk-go-v2/service/ecr	v1.24.6 -> v1.42.0
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	v1.11.1 -> v1.12.3
github.com/aws/aws-sdk-go-v2/service/internal/checksum	v1.3.2 -> v1.6.2
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	v1.11.2 -> v1.12.15
github.com/aws/aws-sdk-go-v2/service/internal/s3shared	v1.17.2 -> v1.18.15
github.com/aws/aws-sdk-go-v2/service/s3	v1.51.1 -> v1.78.0
github.com/aws/aws-sdk-go-v2/service/sso	v1.20.1 -> v1.25.0
github.com/aws/aws-sdk-go-v2/service/ssooidc	v1.23.1 -> v1.29.0
github.com/aws/aws-sdk-go-v2/service/sts	v1.28.1 -> v1.33.16
github.com/aws/smithy-go	v1.20.1 -> v1.22.3
github.com/cheggaaa/pb/v3	v3.1.4 -> v3.1.6
github.com/cloudflare/circl	v1.3.7 -> v1.5.0
github.com/containerd/containerd	v1.7.13 -> v1.7.25
github.com/containerd/stargz-snapshotter/estargz	v0.14.3 -> v0.16.3
github.com/cyphar/filepath-securejoin	v0.2.4 -> v0.3.6
github.com/docker/cli	v25.0.1+incompatible -> v27.5.0+incompatible
github.com/docker/docker	v25.0.5+incompatible -> v27.5.0+incompatible
github.com/docker/docker-credential-helpers	v0.7.0 -> v0.8.2
github.com/evanphx/json-patch	v5.7.0+incompatible -> v5.9.0+incompatible
github.com/fsnotify/fsnotify	v1.7.0 -> v1.8.0
github.com/go-git/go-billy/v5	v5.5.0 -> v5.6.2
github.com/go-git/go-git/v5	v5.11.0 -> v5.13.2
github.com/go-openapi/analysis	v0.21.5 -> v0.23.0
github.com/go-openapi/errors	v0.21.0 -> v0.22.0
github.com/go-openapi/jsonpointer	v0.20.1 -> v0.21.0
github.com/go-openapi/jsonreference	v0.20.3 -> v0.21.0
github.com/go-openapi/loads	v0.21.3 -> v0.22.0
github.com/go-openapi/runtime	v0.27.1 -> v0.28.0
github.com/go-openapi/spec	v0.20.12 -> v0.21.0
github.com/go-openapi/strfmt	v0.22.0 -> v0.23.0
github.com/go-openapi/swag	v0.22.5 -> v0.23.0
github.com/go-openapi/validate	v0.22.4 -> v0.24.0
github.com/golang-jwt/jwt/v4	v4.5.0 -> v4.5.1
github.com/golang-jwt/jwt/v5	v5.0.0 -> v5.2.1
github.com/golang/groupcache	v0.0.0-20210331224755-41bb18bfe9da -> v0.0.0-20241129210726-2c02b8208cf8
github.com/golang/protobuf	v1.5.3 -> v1.5.4
github.com/google/gnostic-models	v0.6.8 -> v0.6.9-0.20230804172637-c7be7c783f49
github.com/google/go-containerregistry	v0.19.0 -> v0.20.3
github.com/google/s2a-go	v0.1.7 -> v0.1.9
github.com/google/wire	v0.5.0 -> v0.6.0
github.com/googleapis/enterprise-certificate-proxy	v0.3.2 -> v0.3.4
github.com/googleapis/gax-go/v2	v2.12.0 -> v2.14.1
github.com/hashicorp/go-getter	v1.7.3 -> v1.7.8
github.com/hashicorp/go-version	v1.6.0 -> v1.7.0
github.com/hashicorp/hcl	v1.0.0 -> v1.0.1-vault-7
github.com/hashicorp/hcl/v2	v2.19.1 -> v2.23.0
github.com/huandu/xstrings	v1.4.0 -> v1.5.0
github.com/imdario/mergo	v0.3.15 -> v0.3.16
github.com/jmespath/go-jmespath	v0.4.0 -> v0.4.1-0.20220621161143-b0104c826a24
github.com/jmoiron/sqlx	v1.3.5 -> v1.4.0
github.com/klauspost/compress	v1.17.2 -> v1.17.11
github.com/knqyf263/go-deb-version	v0.0.0-20230223133812-3ed183d23422 -> v0.0.0-20241115132648-6f4aee6ccd23
github.com/knqyf263/go-rpmdb	v0.0.0-20231008124120-ac49267ab4e1 -> v0.1.1
github.com/magiconair/properties	v1.8.7 -> v1.8.9
github.com/masahiro331/go-disk	v0.0.0-20220919035250-c8da316f91ac -> v0.0.0-20240625071113-56c933208fee
github.com/masahiro331/go-ebs-file	v0.0.0-20240112135404-d5fbb1d46323 -> v0.0.0-20240917043618-e6d2bea5c32e
github.com/masahiro331/go-ext4-filesystem	v0.0.0-20231208112839-4339555a0cd4 -> v0.0.0-20240620024024-ca14e6327bbd
github.com/masahiro331/go-mvn-version	v0.0.0-20210429150710-d3157d602a08 -> v0.0.0-20250131095131-f4974fa13b8a
github.com/masahiro331/go-xfs-filesystem	v0.0.0-20230608043311-a335f4599b70 -> v0.0.0-20231205045356-1b22259a6c44
github.com/mattn/go-colorable	v0.1.13 -> v0.1.14
github.com/mattn/go-runewidth	v0.0.14 -> v0.0.16
github.com/moby/buildkit	v0.12.5 -> v0.18.2
github.com/moby/spdystream	v0.2.0 -> v0.5.0
github.com/moby/sys/mountinfo	v0.6.2 -> v0.7.2
github.com/moby/sys/sequential	v0.5.0 -> v0.6.0
github.com/moby/sys/signal	v0.7.0 -> v0.7.1
github.com/moby/sys/user	v0.1.0 -> v0.3.0
github.com/open-policy-agent/opa	v0.62.0 -> v1.1.0
github.com/opencontainers/image-spec	v1.1.0-rc6 -> v1.1.0
github.com/opencontainers/runtime-spec	v1.1.0 -> v1.2.0
github.com/opencontainers/selinux	v1.11.0 -> v1.11.1
github.com/owenrumney/go-sarif/v2	v2.3.0 -> v2.3.3
github.com/owenrumney/squealer	v1.2.2 -> v1.2.11
github.com/package-url/packageurl-go	v0.1.2 -> v0.1.3
github.com/pelletier/go-toml/v2	v2.1.0 -> v2.2.3
github.com/pjbgf/sha1cd	v0.3.0 -> v0.3.2
github.com/pkg/browser	v0.0.0-20210911075715-681adbf594b8 -> v0.0.0-20240102092130-5ac0b6a4141c
github.com/prometheus/client_golang	v1.19.0 -> v1.20.5
github.com/prometheus/client_model	v0.5.0 -> v0.6.1
github.com/prometheus/common	v0.48.0 -> v0.61.0
github.com/prometheus/procfs	v0.12.0 -> v0.15.1
github.com/rivo/uniseg	v0.2.0 -> v0.4.7
github.com/rubenv/sql-migrate	v1.5.2 -> v1.7.1
github.com/sagikazarmark/locafero	v0.4.0 -> v0.6.0
github.com/samber/lo	v1.39.0 -> v1.49.1
github.com/shopspring/decimal	v1.3.1 -> v1.4.0
github.com/skeema/knownhosts	v1.2.1 -> v1.3.0
github.com/spdx/tools-golang	v0.5.4-0.20231108154018-0c0f394b5e1a -> v0.5.5
github.com/spf13/cast	v1.6.0 -> v1.7.1
github.com/spf13/cobra	v1.8.0 -> v1.9.1
github.com/spf13/pflag	v1.0.5 -> v1.0.6
github.com/spf13/viper	v1.18.2 -> v1.19.0
github.com/stretchr/objx	v0.5.0 -> v0.5.2
github.com/stretchr/testify	v1.8.4 -> v1.10.0
github.com/tchap/go-patricia/v2	v2.3.1 -> v2.3.2
github.com/tetratelabs/wazero	v1.7.0 -> v1.9.0
github.com/zclconf/go-cty	v1.14.1 -> v1.16.2
github.com/zclconf/go-cty-yaml	v1.0.3 -> v1.1.0
go.etcd.io/bbolt	v1.3.8 -> v1.4.0
go.mongodb.org/mongo-driver	v1.13.1 -> v1.14.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	v0.46.1 -> v0.56.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	v0.46.1 -> v0.59.0
go.opentelemetry.io/otel	v1.23.1 -> v1.34.0
go.opentelemetry.io/otel/metric	v1.23.1 -> v1.34.0
golang.org/x/crypto	v0.19.0 -> v0.33.0
golang.org/x/exp	v0.0.0-20231110203233-9a3e6036ecaa -> v0.0.0-20250106191152-7588d65b2ba8
golang.org/x/mod	v0.15.0 -> v0.23.0
golang.org/x/net	v0.21.0 -> v0.35.0
golang.org/x/oauth2	v0.16.0 -> v0.25.0
golang.org/x/sync	v0.6.0 -> v0.11.0
golang.org/x/sys	v0.17.0 -> v0.30.0
golang.org/x/term	v0.17.0 -> v0.29.0
golang.org/x/text	v0.14.0 -> v0.22.0
golang.org/x/time	v0.5.0 -> v0.9.0
golang.org/x/tools	v0.17.0 -> v0.29.0
golang.org/x/xerrors	v0.0.0-20220907171357-04be3eba64a2 -> v0.0.0-20240716161551-93cc26a95ae9
google.golang.org/api	v0.155.0 -> v0.218.0
google.golang.org/genproto	v0.0.0-20240123012728-ef4313101c80 -> v0.0.0-20241118233622-e639e219e697
google.golang.org/genproto/googleapis/api	v0.0.0-20240123012728-ef4313101c80 -> v0.0.0-20250115164207-1a7da9e5054f
google.golang.org/genproto/googleapis/rpc	v0.0.0-20240123012728-ef4313101c80 -> v0.0.0-20250115164207-1a7da9e5054f
google.golang.org/grpc	v1.62.0 -> v1.70.0
google.golang.org/protobuf	v1.33.0 -> v1.36.5
helm.sh/helm/v3	v3.14.2 -> v3.17.1
k8s.io/api	v0.29.1 -> v0.32.2
k8s.io/apiextensions-apiserver	v0.29.0 -> v0.32.1
k8s.io/apimachinery	v0.29.1 -> v0.32.2
k8s.io/apiserver	v0.29.0 -> v0.32.1
k8s.io/cli-runtime	v0.29.0 -> v0.32.1
k8s.io/client-go	v0.29.0 -> v0.32.1
k8s.io/component-base	v0.29.0 -> v0.32.1
k8s.io/klog/v2	v2.120.0 -> v2.130.1
k8s.io/kube-openapi	v0.0.0-20231010175941-2dd684a91f00 -> v0.0.0-20241105132330-32ad38e42d3f
k8s.io/kubectl	v0.29.0 -> v0.32.1
k8s.io/utils	v0.0.0-20231127182322-b307cd553661 -> v0.0.0-20241104100929-3ea5e8cea738
modernc.org/ccgo/v3	v3.16.15 -> v3.17.0
modernc.org/libc	v1.41.0 -> v1.61.13
modernc.org/mathutil	v1.6.0 -> v1.7.1
modernc.org/memory	v1.7.2 -> v1.8.2
modernc.org/opt	v0.1.3 -> v0.1.4
modernc.org/strutil	v1.2.0 -> v1.2.1
sigs.k8s.io/json	v0.0.0-20221116044647-bc3834ca7abd -> v0.0.0-20241010143419-9aa6b5e7a4b3
sigs.k8s.io/kustomize/api	v0.13.5-0.20230601165947-6ce0bf390ce3 -> v0.18.0
sigs.k8s.io/kustomize/kyaml	v0.14.3-0.20230601165947-6ce0bf390ce3 -> v0.18.1
sigs.k8s.io/structured-merge-diff/v4	v4.4.1 -> v4.4.2