release: Prepare v0.10.0 (#112)

Signed-off-by: Daniel Pacak <[email protected]>
aquasecurity · May 20, 2020 · b063d5f · b063d5f
1 parent ea2537f
commit b063d5f
Show file tree

Hide file tree

Showing 3 changed files with 39 additions and 29 deletions.
diff --git a/helm/harbor-scanner-trivy/Chart.yaml b/helm/harbor-scanner-trivy/Chart.yaml
@@ -1,7 +1,7 @@
 apiVersion: v1
 name: harbor-scanner-trivy
-version: 0.6.0
-appVersion: "0.9.0"
+version: 0.7.0
+appVersion: "0.10.0"
 description: Trivy as a plug-in vulnerability scanner in the Harbor registry
 keywords:
   - scanner

diff --git a/helm/harbor-scanner-trivy/README.md b/helm/harbor-scanner-trivy/README.md
@@ -75,7 +75,7 @@ The following table lists the configurable parameters of the scanner adapter cha
 | `image.tag`                           | Image tag                                                               | `{TAG_NAME}`   |
 | `image.pullPolicy`                    | Image pull policy                                                       | `IfNotPresent` |
 | `replicaCount`                        | Number of scanner adapter Pods to run                                   | `1`            |
-| `scanner.logLevel`                    | The log level of `trace`, `debug`, `info`, `warn`, `warning`, `error`, `fatal` or `panic`. The standard logger logs entries with that level or anything above it   | `info` |
+| `scanner.logLevel`                    | The log level of `trace`, `debug`, `info`, `warn`, `warning`, `error`, `fatal` or `panic`. The standard logger logs entries with that level or anything above it | `info` |
 | `scanner.api.tlsEnabled`              | The flag to enable or disable TLS for HTTP                              | `true`         |
 | `scanner.api.tlsCertificate`          | The absolute path to the x509 certificate file                          |                |
 | `scanner.api.tlsKey`                  | The absolute path to the x509 private key file                          |                |

diff --git a/helm/harbor-scanner-trivy/values.yaml b/helm/harbor-scanner-trivy/values.yaml
@@ -4,7 +4,7 @@ fullnameOverride: ""
 image:
   registry: docker.io
   repository: aquasec/harbor-scanner-trivy
-  tag: 0.9.0
+  tag: 0.10.0
   pullPolicy: IfNotPresent
 
 replicaCount: 1
@@ -33,48 +33,58 @@ securityContext:
   readOnlyRootFilesystem: true
 
 scanner:
+  ## logLevel the log level of `trace`, `debug`, `info`, `warn`, `warning`, `error`, `fatal` or `panic`.
+  ## The standard logger logs entries with that level or anything above it.
   logLevel: info
   api:
+    ## tlsEnabled the flag to enable or disable TLS for HTTP
     tlsEnabled: false
+    ## tlsCertificate the absolute path to the x509 certificate file
     tlsCertificate: ""
+    ## tlsKey the absolute path to the x509 private key file
     tlsKey: ""
+    ## readTimeout the maximum duration for reading the entire request, including the body
     readTimeout: "15s"
+    ## writeTimeout the maximum duration before timing out writes of the response
     writeTimeout: "15s"
+    ## idleTimeout the maximum amount of time to wait for the next request when keep-alives are enabled
     idleTimeout: "60s"
   trivy:
+    ## cacheDir Trivy cache directory
     cacheDir: "/home/scanner/.cache/trivy"
+    ## reportsDir Trivy reports directory
     reportsDir: "/home/scanner/.cache/reports"
-    # debugMode the flag to enable Trivy debug mode
+    ## debugMode the flag to enable Trivy debug mode
     debugMode: false
-    # vulnType a comma-separated list of vulnerability types. Possible values are `os` and `library`.
+    ## vulnType a comma-separated list of vulnerability types. Possible values are `os` and `library`.
     vulnType: "os,library"
-    # severity a comma-separated list of vulnerabilities severities to be displayed
+    ## severity a comma-separated list of vulnerabilities severities to be displayed
     severity: "UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL"
-    # ignoreUnfixed the flag to display only fixed vulnerabilities
+    ## ignoreUnfixed the flag to display only fixed vulnerabilities
     ignoreUnfixed: false
-    # skipUpdate the flag to enable or disable Trivy DB downloads from GitHub
-    #
-    # You might want to enable this flag in test or CI/CD environments to avoid GitHub rate limiting issues.
-    # If the flag is enabled you have to manually download the `trivy.db` file and mount it in the
-    # `/home/scanner/.cache/trivy/db/trivy.db` path (see `cacheDir`).
+    ## skipUpdate the flag to enable or disable Trivy DB downloads from GitHub
+    ##
+    ## You might want to enable this flag in test or CI/CD environments to avoid GitHub rate limiting issues.
+    ## If the flag is enabled you have to manually download the `trivy.db` file and mount it in the
+    ## `/home/scanner/.cache/trivy/db/trivy.db` path (see `cacheDir`).
     skipUpdate: false
-    # gitHubToken the GitHub access token to download Trivy DB
-    #
-    # Trivy DB contains vulnerability information from NVD, Red Hat, and many other upstream vulnerability databases.
-    # It is downloaded by Trivy from the GitHub release page https://github.com/aquasecurity/trivy-db/releases and cached
-    # in the local file system (`/home/scanner/.cache/trivy/db/trivy.db`). In addition, the database contains the update
-    # timestamp so Trivy can detect whether it should download a newer version from the Internet or use the cached one.
-    # Currently, the database is updated every 12 hours and published as a new release to GitHub.
-    #
-    # Anonymous downloads from GitHub are subject to the limit of 60 requests per hour. Normally such rate limit is enough
-    # for production operations. If, for any reason, it's not enough, you could increase the rate limit to 5000
-    # requests per hour by specifying the GitHub access token. For more details on GitHub rate limiting please consult
-    # https://developer.github.com/v3/#rate-limiting
-    #
-    # You can create a GitHub token by following the instructions in
-    # https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line
+    ## gitHubToken the GitHub access token to download Trivy DB
+    ##
+    ## Trivy DB contains vulnerability information from NVD, Red Hat, and many other upstream vulnerability databases.
+    ## It is downloaded by Trivy from the GitHub release page https://github.com/aquasecurity/trivy-db/releases and cached
+    ## in the local file system (`/home/scanner/.cache/trivy/db/trivy.db`). In addition, the database contains the update
+    ## timestamp so Trivy can detect whether it should download a newer version from the Internet or use the cached one.
+    ## Currently, the database is updated every 12 hours and published as a new release to GitHub.
+    ##
+    ## Anonymous downloads from GitHub are subject to the limit of 60 requests per hour. Normally such rate limit is enough
+    ## for production operations. If, for any reason, it's not enough, you could increase the rate limit to 5000
+    ## requests per hour by specifying the GitHub access token. For more details on GitHub rate limiting please consult
+    ## https://developer.github.com/v3/#rate-limiting
+    ##
+    ## You can create a GitHub token by following the instructions in
+    ## https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line
     gitHubToken: ""
-    # insecure the flag to skip verifying registry certificate
+    ## insecure the flag to skip verifying registry certificate
     insecure: false
   store:
     redisURL: "redis://harbor-harbor-redis:6379"