v0.43.0

⚡Release highlights and summary⚡

👉 #4741

Changelog

• 6008192 chore(deps): Update defsec to v0.90.1 (#4739)
• 73734ea feat(nodejs): support yarn workspaces (#4664)
• 22463ab feat(cli): add include-dev-deps flag (#4700)
• 790c805 fix(image): pass the secret scanner option to scan the img config (#4735)
• 86fec9c fix: scan job pod it not found on k8s-1.27.x (#4729)
• 26bc911 feat(docker): add support for mTLS authentication when connecting to registry (#4649)
• d699e8c chore(deps): Update defsec to v0.90.0 (#4723)
• 1777878 fix: skip scanning the gpg-pubkey package (#4720)
• 9be0825 Fix http registry oci pull (#4701)
• 5d73b47 feat(misconf): Support skipping services (#4686)
• 46e784c docs: fix supported modes for pubspec.lock files (#4713)
• 0f61a84 fix(misconf): disable the terraform plan analyzer for other scanners (#4714)
• 8a1aa44 clarifying a dir path is required for custom policies (#4716)
• fbab9ee chore: update alpine base images (#4715)
• f84417b fix last-history-created (#4697)
• 85c681d feat: kbom and cyclonedx v1.5 spec support (#4708)
• 46748ce docs: add information about Aqua (#4590)
• c6741bd fix: k8s escape resource filename on windows os (#4693)
• a21acc7 ci: ignore merge queue branches (#4696)
• 32a3a33 chore(deps): bump actions/checkout from 2.4.0 to 3.5.3 (#4695)
• cbb47dc chore(deps): bump aquaproj/aqua-installer from 2.1.1 to 2.1.2 (#4694)
• e3d10d2 feat: cyclondx sbom custom property support (#4688)
• e1770e0 ci: do not trigger tests in main (#4692)
• 337c0b7 add SUSE Linux Enterprise Server 15 SP5 and update SP4 eol date (#4690)
• 5ccee14 use group field for jar in cyclonedx (#4674)
• 96db52c feat(java): capture licenses from pom.xml (#4681)
• 3e902a5 feat(helm): make sessionAffinity configurable (#4623)
• 904f1cf fix: Show the correct URL of the secret scanning (#4682)
• 7d48c5d document expected file pattern definition format (#4654)
• dcc73e9 fix: format arg error (#4642)
• 35c4262 feat(k8s): cyclonedx kbom support (#4557)
• 0e01851 fix(nodejs): remove unused fields for the pnpm lockfile (#4630)
• 4d9b444 fix(vm): update ext4-filesystem parser for parse multi block extents (#4616)
• c29197a ci: update build IDs (#4641)
• d7637ad fix(debian): update EOL for Debian 12 (#4647)
• ef39eee chore(deps): bump go-containerregistry (#4639)
• 1ce8bb5 chore: unnecessary use of fmt.Sprintf (S1039) (#4637)
• bc9513f fix(db): change argument order in Exists query for JavaDB (#4595)
• aecd2f0 feat(aws): Add support to see successes in results (#4427)
• 2cbf402 chore(deps): bump golangci/golangci-lint-action from 3.5.0 to 3.6.0 (#4613)
• 0099b20 ci: do not trigger tests in main (#4614)
• a597a54 chore(deps): bump sigstore/cosign-installer (#4609)
• b453fbe chore(deps): bump CycloneDX/gh-gomod-generate-sbom from 1 to 2 (#4608)
• 0e876d5 ci: bypass the required status checks (#4611)
• a4f27d2 ci: support merge queue (#3652)
• 9e6411e ci: matrix build for testing (#4587)
• ef6538a feat: trivy k8s private registry support (#4567)
• 139f3e1 docs: add general coverage page (#3859)
• 479cfdd chore: create SECURITY.md (#4601)