diff --git a/bitnami/trivy/0/debian-12/Dockerfile b/bitnami/trivy/0/debian-12/Dockerfile index 8efa538b6d03..7a17c8ac0559 100644 --- a/bitnami/trivy/0/debian-12/Dockerfile +++ b/bitnami/trivy/0/debian-12/Dockerfile @@ -17,7 +17,7 @@ RUN --mount=type=secret,id=downloads_url,env=SECRET_DOWNLOADS_URL \ DOWNLOADS_URL=${SECRET_DOWNLOADS_URL:-${DOWNLOADS_URL}} ; \ mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ || exit 1 ; \ COMPONENTS=( \ - "trivy-0.69.3-1-linux-${OS_ARCH}-debian-12" \ + "trivy-0.69.4-0-linux-${OS_ARCH}-debian-12" \ ) ; \ for COMPONENT in "${COMPONENTS[@]}"; do \ if [ ! -f "${COMPONENT}.tar.gz" ]; then \ @@ -42,11 +42,11 @@ ARG TARGETARCH ENV OS_ARCH="${TARGETARCH:-amd64}" LABEL org.opencontainers.image.base.name="scratch" \ - org.opencontainers.image.created="2026-03-06T18:38:43Z" \ + org.opencontainers.image.created="2026-03-19T18:52:48Z" \ org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ org.opencontainers.image.title="trivy" \ org.opencontainers.image.vendor="Broadcom, Inc." \ - org.opencontainers.image.version="0.69.3" + org.opencontainers.image.version="0.69.4" COPY rootfs / COPY --from=builder /opt/bitnami/rootfs / @@ -55,9 +55,9 @@ COPY --from=builder /opt/bitnami/trivy/bin/trivy /opt/bitnami/trivy/bin/trivy COPY --from=builder /opt/bitnami/trivy/contrib /opt/bitnami/trivy/contrib COPY --from=builder /opt/bitnami/trivy/licenses /opt/bitnami/trivy/licenses -ENV APP_VERSION="0.69.3" \ +ENV APP_VERSION="0.69.4" \ BITNAMI_APP_NAME="trivy" \ - IMAGE_REVISION="1" \ + IMAGE_REVISION="0" \ PATH="/opt/bitnami/trivy/bin:$PATH" WORKDIR /opt/bitnami/trivy diff --git a/bitnami/trivy/README.md b/bitnami/trivy/README.md index 8bd9a20dd978..bb2951219ca9 100644 --- a/bitnami/trivy/README.md +++ b/bitnami/trivy/README.md @@ -82,6 +82,14 @@ Check the [official Trivy documentation](https://github.com/aquasecurity/trivy#u - The `docker-compose.yaml` file has been removed, as it was solely intended for internal testing purposes. + +### FIPS configuration in Bitnami Secure Images + +The Bitnami Trivy Docker image from the [Bitnami Secure Images](https://go-vmware.broadcom.com/contact-us) catalog includes extra features and settings to configure the container with FIPS capabilities. You can configure the next environment variables: + +- `OPENSSL_FIPS`: whether OpenSSL runs in FIPS mode or not. `yes` (default), `no`. +- `GODEBUG`: controls Go FIPS mode. Use `fips140=only` (restricted), `fips140=on` (relaxed), or `fips140=off` (disabled). + ## License Copyright © 2026 Broadcom. The term "Broadcom" refers to Broadcom Inc. and/or its subsidiaries.