Skip to content

Release 2.0.3
Compare
Choose a tag to compare
@EdgewareRoad EdgewareRoad released this 19 Apr 19:02
· 38 commits to main since this release
2.0.3
5cca2b7

Release 2.0.3:

Fixed null pointer exception in the happy case that you have no vulnerabilities in your code.

Release 2.0.2:

Fixed generated POM file in published Maven package

Release 2.0.1:

Fixed offline mode

Release 2.0:

Massive update...

TrivySummary will now attempt to download EPSS scores for each CVE and graph each CVE,
CVSS (severity) against EPSS (exploitability), unless asked to operate in offline mode.

TrivySummary can be given minimum CVSS and EPSS thresholds above which CVEs should be
marked as high priority for remediation.

TrivySummary will now show applicable NVD and RedHat links for each CVE, aiding
assessment.

BREAKING CHANGE: --failThreshold parameter now renamed --failSeverityThreshold and the
default is no longer to fail on any severity. In return, if this isn't set and
prioritisation is in effect (as above), then any high priority CVEs would return an
error code.

Assets 3
Loading