From 6ae84ecf69451c504c735588f838390c089e085a Mon Sep 17 00:00:00 2001
From: Teppei Fukuda <knqyf263@gmail.com>
Date: Thu, 6 Jun 2024 10:22:35 +0400
Subject: [PATCH] release: v0.53.0 [main]

---
 .release-please-manifest.json |   2 +-
 CHANGELOG.md                  | 231 ++++++++++++++++++++++++++++++++++
 2 files changed, 232 insertions(+), 1 deletion(-)

diff --git a/.release-please-manifest.json b/.release-please-manifest.json
index be3d2812d7fe..e5e510d9d3ad 100644
--- a/.release-please-manifest.json
+++ b/.release-please-manifest.json
@@ -1 +1 @@
-{".":"0.52.0"}
+{".":"0.53.0"}
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 721b9a11baa7..080b1d782410 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,236 @@
 # Changelog
 
+## [0.53.0](https://github.com/knqyf263/trivy/compare/v0.52.0...v0.53.0) (2024-06-06)
+
+
+### Features
+
+* add aliases to '--scanners' ([#5558](https://github.com/knqyf263/trivy/issues/5558)) ([a96ec35](https://github.com/knqyf263/trivy/commit/a96ec35572508860745f07085ebf25e8197694f3))
+* Add flag to configure node-collector image ref ([#5710](https://github.com/knqyf263/trivy/issues/5710)) ([2569575](https://github.com/knqyf263/trivy/commit/256957523a9b4565f814f7e3f349fb76aeda10a4))
+* add info log message about dev deps suppression ([#6211](https://github.com/knqyf263/trivy/issues/6211)) ([7cb6c02](https://github.com/knqyf263/trivy/commit/7cb6c02a4e2ad1c632a70804111a5048d1c0d1f6))
+* Add Julia language analyzer support ([#5635](https://github.com/knqyf263/trivy/issues/5635)) ([fecafb1](https://github.com/knqyf263/trivy/commit/fecafb1fc5bb129c7485342a0775f0dd8bedd28e))
+* add relationships ([#6563](https://github.com/knqyf263/trivy/issues/6563)) ([6343e4f](https://github.com/knqyf263/trivy/commit/6343e4fc7112d0e8709d9ad4690b203509ee19ed))
+* add support `environment.yaml` files ([#6569](https://github.com/knqyf263/trivy/issues/6569)) ([e3bef02](https://github.com/knqyf263/trivy/commit/e3bef02018208057f0d840b01f12e6867b0cc1ff))
+* add support for plugin index ([#6674](https://github.com/knqyf263/trivy/issues/6674)) ([26faf8f](https://github.com/knqyf263/trivy/commit/26faf8f3f04b1c5f9f81c03ffc6b2008732207e2))
+* add ubuntu 23.10 and 24.04 support ([#6573](https://github.com/knqyf263/trivy/issues/6573)) ([4369a19](https://github.com/knqyf263/trivy/commit/4369a19af771f81df141530bacdc8680e7120ac7))
+* added `Metadata` into the k8s resource's scan report ([#5322](https://github.com/knqyf263/trivy/issues/5322)) ([00d9c46](https://github.com/knqyf263/trivy/commit/00d9c4666fd4d7e3c1f61f72704db893b334b5af))
+* allow end-users to adjust K8S client QPS and burst ([#5910](https://github.com/knqyf263/trivy/issues/5910)) ([2c9d7c6](https://github.com/knqyf263/trivy/commit/2c9d7c6b50e01358169089ae5010ef1d84f104bb))
+* **aws:** apply filter options to result ([#6367](https://github.com/knqyf263/trivy/issues/6367)) ([09e37b7](https://github.com/knqyf263/trivy/commit/09e37b7c67664ca28923d392dc33fb1ca2600d35))
+* **aws:** quiet flag support ([#6331](https://github.com/knqyf263/trivy/issues/6331)) ([87a9aa6](https://github.com/knqyf263/trivy/commit/87a9aa60d13a7263e9fa4be01ec8693e17c9d4e3))
+* **c:** add license support for conan lock files ([#6329](https://github.com/knqyf263/trivy/issues/6329)) ([5dd9bd4](https://github.com/knqyf263/trivy/commit/5dd9bd47010366d2665ba70a81c2cd61c6ff6c41))
+* **cloudformation:** add support for logging and endpoint access for EKS ([#6440](https://github.com/knqyf263/trivy/issues/6440)) ([86714bf](https://github.com/knqyf263/trivy/commit/86714bf6bf40ea3e3c0cbc6d1c9d0a11bb5834bf))
+* **cloudformation:** inline ignore support for YAML templates ([#6358](https://github.com/knqyf263/trivy/issues/6358)) ([df024e8](https://github.com/knqyf263/trivy/commit/df024e88ddccc0bd9158e7a4a553983438399826))
+* **dart:** add graph support ([#5374](https://github.com/knqyf263/trivy/issues/5374)) ([1a15a3a](https://github.com/knqyf263/trivy/commit/1a15a3adb1e42a6e3e3ab8706f3262a4a80892d0))
+* filter k8s core components vuln results ([#5713](https://github.com/knqyf263/trivy/issues/5713)) ([0ff5f96](https://github.com/knqyf263/trivy/commit/0ff5f96bb76ed9bec438f73ade2b1249a9025b16))
+* **flag:** replace '--slow' with '--parallel' ([#5572](https://github.com/knqyf263/trivy/issues/5572)) ([ac0e327](https://github.com/knqyf263/trivy/commit/ac0e32749202754ea26b64e4facdf91b01b31433))
+* **go:** add main module ([#6574](https://github.com/knqyf263/trivy/issues/6574)) ([2d090ef](https://github.com/knqyf263/trivy/commit/2d090ef2df7966ada7178b4b88179498ad7e1f2b))
+* **go:** parse main mod version from build info settings ([#6564](https://github.com/knqyf263/trivy/issues/6564)) ([419e3d2](https://github.com/knqyf263/trivy/commit/419e3d2023aa190ff62c3952219053a9bca066bb))
+* **go:** parse main module of go binary files ([#6530](https://github.com/knqyf263/trivy/issues/6530)) ([e32215c](https://github.com/knqyf263/trivy/commit/e32215c99d4ccda754adf46dffb5ae062a4a142b))
+* **image:** customer podman host or socket option ([#6256](https://github.com/knqyf263/trivy/issues/6256)) ([9d2057a](https://github.com/knqyf263/trivy/commit/9d2057a7c2029d259f8ee40e84a37a90b6ba7136))
+* **image:** goversion as stdlib ([#6277](https://github.com/knqyf263/trivy/issues/6277)) ([d82d6cb](https://github.com/knqyf263/trivy/commit/d82d6cb73133a25e5c3f6e8d501cb2ac6512dc45))
+* introduce package UIDs for improved vulnerability mapping ([#6583](https://github.com/knqyf263/trivy/issues/6583)) ([998f750](https://github.com/knqyf263/trivy/commit/998f750432a91e1e1832d507e66aab77d02449f9))
+* **java:** add dependency location support for `gradle` files ([#6083](https://github.com/knqyf263/trivy/issues/6083)) ([535b5a9](https://github.com/knqyf263/trivy/commit/535b5a96d948b6ca64ed8ae85ccd26b11fa0137a))
+* **java:** add support for fetching packages from repos mentioned in pom.xml ([#6171](https://github.com/knqyf263/trivy/issues/6171)) ([ce81c05](https://github.com/knqyf263/trivy/commit/ce81c05851f9457cd316f6af70cf3a33dd657b2d))
+* **java:** add support for line numbers for pom.xml files ([#5991](https://github.com/knqyf263/trivy/issues/5991)) ([b4b90cf](https://github.com/knqyf263/trivy/commit/b4b90cfe202138844a27110e9136859cbc20285c))
+* **java:** add support licenses and graph for gradle lock files ([#6140](https://github.com/knqyf263/trivy/issues/6140)) ([f6c5d58](https://github.com/knqyf263/trivy/commit/f6c5d5800166f1686403e0799cc7a330eb6197a7))
+* **java:** mark dependencies from `maven-invoker-plugin` integration tests pom.xml files as `Dev` ([#6213](https://github.com/knqyf263/trivy/issues/6213)) ([617c3e3](https://github.com/knqyf263/trivy/commit/617c3e31bd0fd1b386e3734ef02badc0aed130f4))
+* **k8s:** add support for vulnerability detection ([#5268](https://github.com/knqyf263/trivy/issues/5268)) ([cbbd1ce](https://github.com/knqyf263/trivy/commit/cbbd1ce1f07ea2a440c08b6902958f0af6977b25))
+* **k8s:** rancher rke2 version support ([#5988](https://github.com/knqyf263/trivy/issues/5988)) ([cf0f0d0](https://github.com/knqyf263/trivy/commit/cf0f0d00c23744d6ed9e9a9494e9095898f888ae))
+* **misconf:** Add `--misconfig-scanners` option ([#5670](https://github.com/knqyf263/trivy/issues/5670)) ([b5874e3](https://github.com/knqyf263/trivy/commit/b5874e3ad38e77ac86eedd7a65785b2933f3685f))
+* **misconf:** add helm-api-version and helm-kube-version flag ([#6332](https://github.com/knqyf263/trivy/issues/6332)) ([53517d6](https://github.com/knqyf263/trivy/commit/53517d622b94f5ef2be467fdfa97b73438027362))
+* **misconf:** Add support for `--cf-params` for CFT ([#5507](https://github.com/knqyf263/trivy/issues/5507)) ([e3c28f8](https://github.com/knqyf263/trivy/commit/e3c28f8ee37c5c124135e94bf550beb40dbe7112))
+* **misconf:** Add support for deprecating a check ([#6664](https://github.com/knqyf263/trivy/issues/6664)) ([88702cf](https://github.com/knqyf263/trivy/commit/88702cfd5918b093defc5b5580f7cbf16f5f2417))
+* **misconf:** add support for wildcard ignores ([#6414](https://github.com/knqyf263/trivy/issues/6414)) ([8dd0fcd](https://github.com/knqyf263/trivy/commit/8dd0fcd61b37690f800f9aac6b5c95aec2bb6a65))
+* **misconf:** add support of buildkit instructions when building dockerfile from image config ([#5990](https://github.com/knqyf263/trivy/issues/5990)) ([adfde63](https://github.com/knqyf263/trivy/commit/adfde63d00ec0b7e6a3ceb42aa291bf0d12d13db))
+* **misconf:** add Terraform 'removed' block to schema ([#6640](https://github.com/knqyf263/trivy/issues/6640)) ([b7a0a13](https://github.com/knqyf263/trivy/commit/b7a0a131a03ed49c08d3b0d481bc9284934fd6e1))
+* **misconf:** Expose misconf engine debug logs with `--debug` option ([#5550](https://github.com/knqyf263/trivy/issues/5550)) ([1336223](https://github.com/knqyf263/trivy/commit/13362233c8d3ea54f4b28613a2e7198539eb5c50))
+* **misconf:** loading embedded checks as a fallback ([#6502](https://github.com/knqyf263/trivy/issues/6502)) ([12ec0df](https://github.com/knqyf263/trivy/commit/12ec0dfe9ebfc746bdd1db0956055cfea600450f))
+* **misconf:** register builtin Rego funcs from trivy-checks ([#6616](https://github.com/knqyf263/trivy/issues/6616)) ([7c22ee3](https://github.com/knqyf263/trivy/commit/7c22ee3df5ee51beb90e44428a99541b3d19ab98))
+* **misconf:** resolve tf module from OpenTofu compatible registry ([#6743](https://github.com/knqyf263/trivy/issues/6743)) ([ac74520](https://github.com/knqyf263/trivy/commit/ac7452009bf7ca0fa8ee1de8807c792eabad405a))
+* **misconf:** Support `--ignore-policy` in config scans ([#5359](https://github.com/knqyf263/trivy/issues/5359)) ([01c98d1](https://github.com/knqyf263/trivy/commit/01c98d1516047f6dd41e1d943f0ead3b27e53c93))
+* **misconf:** support for VPC resources for inbound/outbound rules ([#6779](https://github.com/knqyf263/trivy/issues/6779)) ([349caf9](https://github.com/knqyf263/trivy/commit/349caf96bc3dd81551d488044f1adfdb947f39fb))
+* **misconf:** Support private registries for misconf check bundle ([#6327](https://github.com/knqyf263/trivy/issues/6327)) ([f23ed77](https://github.com/knqyf263/trivy/commit/f23ed7759802391b33d957e21334e661f3bb92ae))
+* **misconf:** support symlinks inside of Helm archives ([#6621](https://github.com/knqyf263/trivy/issues/6621)) ([4eae37c](https://github.com/knqyf263/trivy/commit/4eae37c52b035b3576361c12f70d3d9517d0a73c))
+* **misconf:** Use updated terminology for misconfiguration checks ([#6476](https://github.com/knqyf263/trivy/issues/6476)) ([37da98d](https://github.com/knqyf263/trivy/commit/37da98df45f6014fcd5f1744e2e26351b61d2a02))
+* **nodejs:** add v9 pnpm lock file support ([#6617](https://github.com/knqyf263/trivy/issues/6617)) ([1e08648](https://github.com/knqyf263/trivy/commit/1e0864842e32a709941d4b4e8f521602bcee684d))
+* **nodejs:** add yarn alias support ([#5818](https://github.com/knqyf263/trivy/issues/5818)) ([30eff9c](https://github.com/knqyf263/trivy/commit/30eff9c83e4c06eaadb5c1f09d89d08c01014d79))
+* Packagesprops support ([#5605](https://github.com/knqyf263/trivy/issues/5605)) ([16b757d](https://github.com/knqyf263/trivy/commit/16b757d180426809bba126690fe73c9472e37dcb))
+* **plugin:** specify plugin version ([#6683](https://github.com/knqyf263/trivy/issues/6683)) ([d6dc567](https://github.com/knqyf263/trivy/commit/d6dc56732babbc9d7f788c280a768d8648aa093d))
+* **python:** add license support for `requirement.txt` files ([#6782](https://github.com/knqyf263/trivy/issues/6782)) ([29615be](https://github.com/knqyf263/trivy/commit/29615be85e8bfeaf5a0cd51829b1898c55fa4274))
+* **python:** add line number support for `requirement.txt` files ([#6729](https://github.com/knqyf263/trivy/issues/6729)) ([2bc54ad](https://github.com/knqyf263/trivy/commit/2bc54ad2752aba5de4380cb92c13b09c0abefd73))
+* **python:** parse licenses from dist-info folder ([#4724](https://github.com/knqyf263/trivy/issues/4724)) ([df3e90a](https://github.com/knqyf263/trivy/commit/df3e90af8f70c5ee11aa984ddade806036fc63c3))
+* **report:** Add `InstalledFiles` field to Package ([#4706](https://github.com/knqyf263/trivy/issues/4706)) ([5b2b4ea](https://github.com/knqyf263/trivy/commit/5b2b4ea380d91f1a8e30ed565ed99f77343a2ca8))
+* **report:** Add CreatedAt to the JSON report. ([#5542](https://github.com/knqyf263/trivy/issues/5542)) ([#5549](https://github.com/knqyf263/trivy/issues/5549)) ([f4dd062](https://github.com/knqyf263/trivy/commit/f4dd062f582cc2f8809473250d09ef3607e5491f))
+* **report:** Include licenses and secrets filtered by rego to ModifiedFindings ([#6483](https://github.com/knqyf263/trivy/issues/6483)) ([fa3cf99](https://github.com/knqyf263/trivy/commit/fa3cf993eace4be793f85907b42365269c597b91))
+* **report:** output plugin ([#4863](https://github.com/knqyf263/trivy/issues/4863)) ([99c04c4](https://github.com/knqyf263/trivy/commit/99c04c438372a486d2365c6052d20016fc484771))
+* **report:** support for filtering licenses and secrets via rego policy files ([#6004](https://github.com/knqyf263/trivy/issues/6004)) ([c6844a7](https://github.com/knqyf263/trivy/commit/c6844a73f19dd1908d50cd5dd801ff3059dfa998))
+* respect custom exit code from plugin ([#6584](https://github.com/knqyf263/trivy/issues/6584)) ([f0961d5](https://github.com/knqyf263/trivy/commit/f0961d54f6d68324003419f65042d15d5435d28b))
+* **rust:** Support workspace.members parsing for Cargo.toml analysis ([#5285](https://github.com/knqyf263/trivy/issues/5285)) ([5924c02](https://github.com/knqyf263/trivy/commit/5924c021da7fba7e937cff6332ebf9ca317ebf80))
+* **sbom:** Support license detection for SBOM scan ([#6072](https://github.com/knqyf263/trivy/issues/6072)) ([eb3ceb3](https://github.com/knqyf263/trivy/commit/eb3ceb323d2646fceecc4e3c18f13eecb3081c0f))
+* scan vulns on k8s core component apps ([#5418](https://github.com/knqyf263/trivy/issues/5418)) ([f3de7bc](https://github.com/knqyf263/trivy/commit/f3de7bc3becf72fc9e7e23fda0a272ba3d1ce8b5))
+* **secret:** add built-in rule for JWT tokens ([#5480](https://github.com/knqyf263/trivy/issues/5480)) ([2f5afa5](https://github.com/knqyf263/trivy/commit/2f5afa5f292000f1075b882d94565d9f99f607fc))
+* **secret:** add support of GitHub fine-grained tokens ([#5740](https://github.com/knqyf263/trivy/issues/5740)) ([be1c554](https://github.com/knqyf263/trivy/commit/be1c55497f863c13dd92e6b8ca3980678ddf707a))
+* **secret:** added support of Docker registry credentials ([#5720](https://github.com/knqyf263/trivy/issues/5720)) ([108a5b0](https://github.com/knqyf263/trivy/commit/108a5b05ced7967ad9fcbfc3768f57d0c45ef7de))
+* **secret:** Support for detecting Hugging Face Access Tokens ([#6236](https://github.com/knqyf263/trivy/issues/6236)) ([6639911](https://github.com/knqyf263/trivy/commit/66399116627afbaa936da3965e25c2afb409c112))
+* set InstalledFiles for DEB and RPM packages ([#5488](https://github.com/knqyf263/trivy/issues/5488)) ([44d0b28](https://github.com/knqyf263/trivy/commit/44d0b28ada21d5f6ab206b61c9c3899f74b890a9))
+* support `--skip-images` scanning flag ([#6334](https://github.com/knqyf263/trivy/issues/6334)) ([e739ab8](https://github.com/knqyf263/trivy/commit/e739ab85063c82a817cdf33130d7dd1ca9ddb65a))
+* **terraform:** Add hyphen and non-ASCII support for domain names in credential extraction ([#6108](https://github.com/knqyf263/trivy/issues/6108)) ([4a9ac6d](https://github.com/knqyf263/trivy/commit/4a9ac6d1995b6a81d8d0e0f7b606940a1b6264f9))
+* **terraform:** ignore resources by nested attributes ([#6302](https://github.com/knqyf263/trivy/issues/6302)) ([29dee32](https://github.com/knqyf263/trivy/commit/29dee32814729f8ba2382f975582d1dbd092cf5c))
+* **terraform:** Terraform Plan snapshot scanning support ([#6176](https://github.com/knqyf263/trivy/issues/6176)) ([9361cdb](https://github.com/knqyf263/trivy/commit/9361cdb7e28fd304d6fd2a1091feac64a6786672))
+* **vex:** add PURL matching for CSAF VEX ([#5890](https://github.com/knqyf263/trivy/issues/5890)) ([d0c81e2](https://github.com/knqyf263/trivy/commit/d0c81e23c4bf83923ac0a3218b70fc34679ddb9f))
+* **vex:** Add support for CSAF format ([#5535](https://github.com/knqyf263/trivy/issues/5535)) ([c47ed0d](https://github.com/knqyf263/trivy/commit/c47ed0d816a8bedbfbef86b634790d604e623e43))
+* **vex:** consider root component for relationships ([#6313](https://github.com/knqyf263/trivy/issues/6313)) ([c4022d6](https://github.com/knqyf263/trivy/commit/c4022d61b39a4f4139f01f6254f182ab81d2bc35))
+* **vex:** improve relationship support in CSAF VEX ([#6735](https://github.com/knqyf263/trivy/issues/6735)) ([a447f6b](https://github.com/knqyf263/trivy/commit/a447f6ba94b6f8b14177dc5e4369a788e2020d90))
+* **vex:** support non-root components for products in OpenVEX ([#6728](https://github.com/knqyf263/trivy/issues/6728)) ([9515695](https://github.com/knqyf263/trivy/commit/9515695d45e9b5c20890e27e21e3ab45bfd4ce5f))
+* **vuln:** enable `--vex` for all targets ([#5992](https://github.com/knqyf263/trivy/issues/5992)) ([e2eb70e](https://github.com/knqyf263/trivy/commit/e2eb70ecb8e06da819c5447aaf51713c605f7f3f))
+* **vuln:** Handle scanning conan v2.x lockfiles ([#6357](https://github.com/knqyf263/trivy/issues/6357)) ([29b8faf](https://github.com/knqyf263/trivy/commit/29b8faf5faaa02e463cbb54465563b40d5667bf4))
+* **vuln:** ignore vulnerabilities by PURL ([#6178](https://github.com/knqyf263/trivy/issues/6178)) ([cd3e4bc](https://github.com/knqyf263/trivy/commit/cd3e4bcac235c30c144f440a11d568df68f0c6b5))
+* **vuln:** include pkg identifier on detected vulnerabilities ([#5439](https://github.com/knqyf263/trivy/issues/5439)) ([1f0d629](https://github.com/knqyf263/trivy/commit/1f0d6290c33c95d5f213cc409a0ff6a53a2c888e))
+* **vuln:** remove duplicates in Fixed Version ([#5596](https://github.com/knqyf263/trivy/issues/5596)) ([a54d1e9](https://github.com/knqyf263/trivy/commit/a54d1e95fdfa1eaff0b854c6017035001ef4fef0))
+* **vuln:** show suppressed vulnerabilities in table ([#6084](https://github.com/knqyf263/trivy/issues/6084)) ([3c1601b](https://github.com/knqyf263/trivy/commit/3c1601b6cb3df3a2a6a30b086d964ad275438c4c))
+
+
+### Bug Fixes
+
+* add color for error inside of log message ([#6493](https://github.com/knqyf263/trivy/issues/6493)) ([cfddfb3](https://github.com/knqyf263/trivy/commit/cfddfb33c1b9bd7128b78079c298f3417e1fbe34))
+* add config files to FS for post-analyzers ([#5333](https://github.com/knqyf263/trivy/issues/5333)) ([2798df9](https://github.com/knqyf263/trivy/commit/2798df916b86fafc1ee798457fb6302d107e717a))
+* add context to target finding on k8s table view ([#6099](https://github.com/knqyf263/trivy/issues/6099)) ([1b7e474](https://github.com/knqyf263/trivy/commit/1b7e47424b9f48c9fe194ab24b1d4ccdc7a1a005))
+* **alpine:** Add EOL support for alpine 3.19. ([#5938](https://github.com/knqyf263/trivy/issues/5938)) ([260aa28](https://github.com/knqyf263/trivy/commit/260aa281f4616b3b4b711dbad6f5d1979e5d6488))
+* **alpine:** exclude empty licenses for apk packages ([#6130](https://github.com/knqyf263/trivy/issues/6130)) ([aadbad1](https://github.com/knqyf263/trivy/commit/aadbad1d7827cd1af955ce654e943609e05f1745))
+* **amazon:** check only major version of AL to find advisories ([#6295](https://github.com/knqyf263/trivy/issues/6295)) ([fb8c516](https://github.com/knqyf263/trivy/commit/fb8c516ded3f1fa38efbd9cfc54d3cf5c63f2491))
+* **amazon:** save system files for pkgs containing `amzn` in src ([#5951](https://github.com/knqyf263/trivy/issues/5951)) ([fbc1a83](https://github.com/knqyf263/trivy/commit/fbc1a83f3258ee6d5cf2327e2c5fb627438df81e))
+* backport test ([#64](https://github.com/knqyf263/trivy/issues/64)) ([f0a0a68](https://github.com/knqyf263/trivy/commit/f0a0a680a31fa7723771419f388671da103fc885))
+* **bitnami:** use a different comparer for detecting vulnerabilities ([#5633](https://github.com/knqyf263/trivy/issues/5633)) ([abf227e](https://github.com/knqyf263/trivy/commit/abf227e06ec205c712f2434a60ca739a8ea4fd50))
+* check returned error before deferring f.Close() ([#6007](https://github.com/knqyf263/trivy/issues/6007)) ([13f797f](https://github.com/knqyf263/trivy/commit/13f797f885ff007901df7c4b42ecd78604582f5a))
+* check unescaped `BomRef` when matching `PkgIdentifier` ([#6025](https://github.com/knqyf263/trivy/issues/6025)) ([6ccc0a5](https://github.com/knqyf263/trivy/commit/6ccc0a554b07b05fd049f882a1825a0e1e0aabe1))
+* clean up golangci lint configuration ([#6797](https://github.com/knqyf263/trivy/issues/6797)) ([62de6f3](https://github.com/knqyf263/trivy/commit/62de6f3feba6e4c56ad3922441d5b0f150c3d6b7))
+* **cli:** always output fatal errors to stderr ([#6827](https://github.com/knqyf263/trivy/issues/6827)) ([c2b9132](https://github.com/knqyf263/trivy/commit/c2b9132a7e933a68df4cc0eb86aab23719ded1b5))
+* **cli:** inconsistent behavior across CLI flags, environment variables, and config files ([#5843](https://github.com/knqyf263/trivy/issues/5843)) ([59e5433](https://github.com/knqyf263/trivy/commit/59e54334d1bd97ec8bbc4b46e1225940f67b2c5a))
+* **cli:** set correct `scanners` for `k8s` target ([#5561](https://github.com/knqyf263/trivy/issues/5561)) ([138feb0](https://github.com/knqyf263/trivy/commit/138feb024c428492a094825ac4956465d752e8e2))
+* close APKINDEX archive file ([#6672](https://github.com/knqyf263/trivy/issues/6672)) ([5caf437](https://github.com/knqyf263/trivy/commit/5caf4377f3a7fcb1f6e1a84c67136ae62d100be3))
+* close plugin.yaml ([#6577](https://github.com/knqyf263/trivy/issues/6577)) ([916f6c6](https://github.com/knqyf263/trivy/commit/916f6c66f8031bb311657944ff3ca1284169902e))
+* close pom.xml ([#6507](https://github.com/knqyf263/trivy/issues/6507)) ([a986199](https://github.com/knqyf263/trivy/commit/a9861994e51b45b18880d7432347f9d911148faa))
+* close settings.xml ([#6768](https://github.com/knqyf263/trivy/issues/6768)) ([9c3e895](https://github.com/knqyf263/trivy/commit/9c3e895fcb0852c00ac03ed21338768f76b5273b))
+* close testfile ([#6830](https://github.com/knqyf263/trivy/issues/6830)) ([aa0c413](https://github.com/knqyf263/trivy/commit/aa0c413814e8915b38d2285c6a8ba5bc3f0705b4))
+* **cloudformation:** infer type after resolving a function ([#6406](https://github.com/knqyf263/trivy/issues/6406)) ([6a2f6fd](https://github.com/knqyf263/trivy/commit/6a2f6fde4f97f254eb4ef3b79cab99f574abf72a))
+* **cloudformation:** resolve `DedicatedMasterEnabled` parsing issue ([#6439](https://github.com/knqyf263/trivy/issues/6439)) ([74e4c6e](https://github.com/knqyf263/trivy/commit/74e4c6e0127c5594516ed54c1202213d4f670c8e))
+* **cloudformation:** support of all SSE algorithms for s3 ([#6270](https://github.com/knqyf263/trivy/issues/6270)) ([337cb75](https://github.com/knqyf263/trivy/commit/337cb753533ccb7d14b01bb2ef69d26c9061c708))
+* **conda:** add support `pip` deps for `environment.yml` files ([#6675](https://github.com/knqyf263/trivy/issues/6675)) ([150a773](https://github.com/knqyf263/trivy/commit/150a77313e980cd63797a89a03afcbc97b285f38))
+* correct error mismatch causing race in fast walks ([#5482](https://github.com/knqyf263/trivy/issues/5482)) ([8656bd9](https://github.com/knqyf263/trivy/commit/8656bd9f774ae0c2ceb67d545fa772af59257ad9))
+* correct error mismatch causing race in fast walks ([#5516](https://github.com/knqyf263/trivy/issues/5516)) ([fed4710](https://github.com/knqyf263/trivy/commit/fed471018878e5cffae0fe92fd5524b06fb315f5))
+* correct invalid MD5 hashes for rpms ending with one or more zero bytes ([#5393](https://github.com/knqyf263/trivy/issues/5393)) ([e5317c7](https://github.com/knqyf263/trivy/commit/e5317c7bc261081ae4711c4f68e6704462c6a269))
+* **cyclonedx:** fix unmarshal for licenses ([#5828](https://github.com/knqyf263/trivy/issues/5828)) ([b3d516e](https://github.com/knqyf263/trivy/commit/b3d516eafec6a9d4846fc7a9e5f55dd8931ad434))
+* **cyclonedx:** move root component from scanned cyclonedx file to output cyclonedx file ([#6113](https://github.com/knqyf263/trivy/issues/6113)) ([a813506](https://github.com/knqyf263/trivy/commit/a813506f4101ed2df8b93ae43304b654680db91a))
+* **db:** check schema version for image name only ([#6410](https://github.com/knqyf263/trivy/issues/6410)) ([8baccd7](https://github.com/knqyf263/trivy/commit/8baccd7909a4b91970f2a8effcfce2628a42c206))
+* **db:** use schema version as tag only for `trivy-db` and `trivy-java-db` registries by default ([#6219](https://github.com/knqyf263/trivy/issues/6219)) ([96bd7ac](https://github.com/knqyf263/trivy/commit/96bd7ac59452160a02adab1c7d43e3e6d9b639ba))
+* **debian:** sort dpkg info before parsing due to exclude directories ([#6551](https://github.com/knqyf263/trivy/issues/6551)) ([9aca98c](https://github.com/knqyf263/trivy/commit/9aca98cca87d037ad756a3dbe61931cd2ddf1fc0))
+* fail k8s resource scanning ([#5529](https://github.com/knqyf263/trivy/issues/5529)) ([05df244](https://github.com/knqyf263/trivy/commit/05df24477ee30ae2aed13ffffbcf9836ade8969d))
+* fix cursor usage in Redis Clear function ([#6056](https://github.com/knqyf263/trivy/issues/6056)) ([2900a21](https://github.com/knqyf263/trivy/commit/2900a21176eca0fdd6d82d16b73f17cf591d0cc6))
+* fix MIME warnings after updating to Go 1.20 ([#5336](https://github.com/knqyf263/trivy/issues/5336)) ([af485b3](https://github.com/knqyf263/trivy/commit/af485b33fd63a71758f46bea8d2c8c94798a4067))
+* **fs:** handle default skip dirs properly ([#6628](https://github.com/knqyf263/trivy/issues/6628)) ([8016b82](https://github.com/knqyf263/trivy/commit/8016b821a260840ccb81ef520f2804b9482f3820))
+* **go:** add only non-empty root modules for `gobinaries` ([#6710](https://github.com/knqyf263/trivy/issues/6710)) ([c96f2a5](https://github.com/knqyf263/trivy/commit/c96f2a5b3de820da37e14594dd537c3b0949ae9c))
+* **go:** include only `.version`|`.ver` (no prefixes) ldflags for `gobinaries` ([#6705](https://github.com/knqyf263/trivy/issues/6705)) ([afb4f9d](https://github.com/knqyf263/trivy/commit/afb4f9dc4730671ba004e1734fa66422c4c86dad))
+* Golang version parsing from binaries w/GOEXPERIMENT ([#6696](https://github.com/knqyf263/trivy/issues/6696)) ([696f2ae](https://github.com/knqyf263/trivy/commit/696f2ae0ecdd4f90303f41249924a09ace70dd78))
+* handle non-parsable images names ([#5965](https://github.com/knqyf263/trivy/issues/5965)) ([2212d14](https://github.com/knqyf263/trivy/commit/2212d14432935eda2efd9878eaecff1e8eb4071f))
+* **helm:** scan the subcharts once ([#6382](https://github.com/knqyf263/trivy/issues/6382)) ([f148eb1](https://github.com/knqyf263/trivy/commit/f148eb10f25b4daaf97b38ef523e6f16e9b118a1))
+* ignore no init containers ([#5939](https://github.com/knqyf263/trivy/issues/5939)) ([a3fac90](https://github.com/knqyf263/trivy/commit/a3fac90b473aeafc3f8011ea6e7315f3ce18c56e))
+* include packages unless it is not needed ([#6765](https://github.com/knqyf263/trivy/issues/6765)) ([56dbe1f](https://github.com/knqyf263/trivy/commit/56dbe1f6768fe67fbc1153b74fde0f83eaa1b281))
+* increase the default buffer size for scanning dpkg status files by 2 times ([#6298](https://github.com/knqyf263/trivy/issues/6298)) ([3177924](https://github.com/knqyf263/trivy/commit/317792433e4e961441f772c6bd22d63873a8c986))
+* **java:** add only valid libs from `pom.properties` files from `jars` ([#6164](https://github.com/knqyf263/trivy/issues/6164)) ([8221473](https://github.com/knqyf263/trivy/commit/82214736a943f61c173902808f2887a660543fe2))
+* **java:** check if a version exists when determining GAV by file name for `jar` files ([#5630](https://github.com/knqyf263/trivy/issues/5630)) ([37e7e3e](https://github.com/knqyf263/trivy/commit/37e7e3eabf9b788d1f7549d96067d807895a121f))
+* **java:** don't ignore runtime scope for pom.xml files ([#6223](https://github.com/knqyf263/trivy/issues/6223)) ([c4b5ab7](https://github.com/knqyf263/trivy/commit/c4b5ab7881c1538d32d87ac21e67e3586e207cd7))
+* **java:** don't remove excluded deps from upper pom's ([#5838](https://github.com/knqyf263/trivy/issues/5838)) ([7895657](https://github.com/knqyf263/trivy/commit/7895657c89905a5447ca79c71382518907946d16))
+* **java:** download java-db once ([#5442](https://github.com/knqyf263/trivy/issues/5442)) ([26b4959](https://github.com/knqyf263/trivy/commit/26b4959541b8fb10adb5f454ad930c6e2b68a0a8))
+* **java:** fix infinite loop when `relativePath` field points to `pom.xml` being scanned ([#5470](https://github.com/knqyf263/trivy/issues/5470)) ([e2fb3dd](https://github.com/knqyf263/trivy/commit/e2fb3dd58f2800ffbeb106ace8e30032c2600e1e))
+* **java:** parse modules from `pom.xml` files once ([#6312](https://github.com/knqyf263/trivy/issues/6312)) ([7c409fd](https://github.com/knqyf263/trivy/commit/7c409fd270bd71a24da8a06d7be2aa9f5a70321f))
+* **java:** recursive check all nested depManagements with import scope for pom.xml files ([#5982](https://github.com/knqyf263/trivy/issues/5982)) ([729a051](https://github.com/knqyf263/trivy/commit/729a0512abb633a29b6eaa49d224c1fedf389c05))
+* **java:** update logic to detect `pom.xml` file snapshot artifacts from remote repositories ([#6412](https://github.com/knqyf263/trivy/issues/6412)) ([34ab09d](https://github.com/knqyf263/trivy/commit/34ab09d559bf9bee6f39fd8fce10d36fd6759681))
+* k8s friendly error messages kbom non cluster scans ([#5594](https://github.com/knqyf263/trivy/issues/5594)) ([2145464](https://github.com/knqyf263/trivy/commit/214546427e76da21bbc61a5b70ec00d5b95f6d0b))
+* k8s summary separate infra and user finding results ([#6120](https://github.com/knqyf263/trivy/issues/6120)) ([dc76c6e](https://github.com/knqyf263/trivy/commit/dc76c6e4f4df67f5bf01ead2b18e2f98e853ca61))
+* **license:** add FilePath to results to allow for license path filtering via trivyignore file ([#6215](https://github.com/knqyf263/trivy/issues/6215)) ([04535b5](https://github.com/knqyf263/trivy/commit/04535b554ab239b30543ae6514b677d416785ca1))
+* **license:** reorder logic of how python package licenses are acquired ([#6220](https://github.com/knqyf263/trivy/issues/6220)) ([56cedc0](https://github.com/knqyf263/trivy/commit/56cedc0d6795ed34c3fd1a9b10880678c9a709d1))
+* **misconf:** add an image misconf to result ([#5731](https://github.com/knqyf263/trivy/issues/5731)) ([a5342da](https://github.com/knqyf263/trivy/commit/a5342da0670589f580e8b59a0c2bd42b778df76d))
+* **misconf:** avoid panic if the scheme is not valid ([#6496](https://github.com/knqyf263/trivy/issues/6496)) ([4337068](https://github.com/knqyf263/trivy/commit/433706820834548132f4f1aba41a7208143cfab2))
+* **misconf:** clear location URI for SARIF ([#6405](https://github.com/knqyf263/trivy/issues/6405)) ([712dcd3](https://github.com/knqyf263/trivy/commit/712dcd30077dfdf7a5449d635ee38fff5165c422))
+* **misconf:** do not use semver for parsing tf module versions ([#6614](https://github.com/knqyf263/trivy/issues/6614)) ([9c794c0](https://github.com/knqyf263/trivy/commit/9c794c0ffc8d31c82cad3cbd593eb03e689cf583))
+* **misconf:** don't shift ignore rule related to code ([#6708](https://github.com/knqyf263/trivy/issues/6708)) ([39a746c](https://github.com/knqyf263/trivy/commit/39a746c77837f873e87b81be40676818030f44c5))
+* **misconf:** Escape template value correctly ([#6292](https://github.com/knqyf263/trivy/issues/6292)) ([1c49a16](https://github.com/knqyf263/trivy/commit/1c49a16c65ecc63a24d9957174ca91d088855a2a))
+* **misconf:** get `user` from `Config.User` ([#6070](https://github.com/knqyf263/trivy/issues/6070)) ([7fec991](https://github.com/knqyf263/trivy/commit/7fec991c58f5d32424f50ee75dfde790b08b4245))
+* **misconf:** load cached tf modules ([#6607](https://github.com/knqyf263/trivy/issues/6607)) ([7a25dad](https://github.com/knqyf263/trivy/commit/7a25dadb44a57a1099227cde44e1732f25409cea))
+* **misconf:** Parse JSON k8s manifests properly ([#6490](https://github.com/knqyf263/trivy/issues/6490)) ([9b7d713](https://github.com/knqyf263/trivy/commit/9b7d7132b750f3ee0e824179b7fe2ea0cb0916ed))
+* **misconf:** skip Rego errors with a nil location ([#6638](https://github.com/knqyf263/trivy/issues/6638)) ([a2c522d](https://github.com/knqyf263/trivy/commit/a2c522ddb229f049999c4ce74ef75a0e0f9fdc62))
+* **misconf:** skip Rego errors with a nil location ([#6666](https://github.com/knqyf263/trivy/issues/6666)) ([a126e10](https://github.com/knqyf263/trivy/commit/a126e1075a44ef0e40c0dc1e214d1c5955f80242))
+* no schedule toleration ([#5562](https://github.com/knqyf263/trivy/issues/5562)) ([3891e3d](https://github.com/knqyf263/trivy/commit/3891e3d5d4edcde4799c81780010db6f0df2b39e))
+* node-collector high and critical cves ([#6707](https://github.com/knqyf263/trivy/issues/6707)) ([ff32deb](https://github.com/knqyf263/trivy/commit/ff32deb7bf9163c06963f557228260b3b8c161ed))
+* **nodejs:** add local packages support for `pnpm-lock.yaml` files ([#6034](https://github.com/knqyf263/trivy/issues/6034)) ([4e962c0](https://github.com/knqyf263/trivy/commit/4e962c02aa74875a265eb231f44e9ade4fc1a70d))
+* **nodejs:** add name validation for package name from `package.json`  ([#6268](https://github.com/knqyf263/trivy/issues/6268)) ([12c5bf0](https://github.com/knqyf263/trivy/commit/12c5bf0805753c8d68423a06920f184f2fd55772))
+* **nodejs:** add support for parsing `workspaces` from `package.json` as an object ([#6231](https://github.com/knqyf263/trivy/issues/6231)) ([f85c9fa](https://github.com/knqyf263/trivy/commit/f85c9fac6f522d9a5f139e7de9bc7b5037692877))
+* **nodejs:** find licenses for packages with slash ([#5836](https://github.com/knqyf263/trivy/issues/5836)) ([f90d4ee](https://github.com/knqyf263/trivy/commit/f90d4ee436e89fa3806e436bf7549053f4d51b27))
+* **nodejs:** merge `Indirect`, `Dev`, `ExternalReferences` fields for same deps from `package-lock.json` files v2 or later ([#6356](https://github.com/knqyf263/trivy/issues/6356)) ([258d153](https://github.com/knqyf263/trivy/commit/258d1534614a98811de657eb196051728529defd))
+* **nodejs:** support protocols for dependency section in yarn.lock files ([#5612](https://github.com/knqyf263/trivy/issues/5612)) ([ad977a4](https://github.com/knqyf263/trivy/commit/ad977a4256920d6269e84c82e4f42bbe244a2c5a))
+* **nodejs:** use project dir when searching for workspaces for Yarn.lock files ([#6102](https://github.com/knqyf263/trivy/issues/6102)) ([3ac6388](https://github.com/knqyf263/trivy/commit/3ac63887dc793240390f0c2b8b0f6295953a2efa))
+* **plugin:** initialize logger ([#6836](https://github.com/knqyf263/trivy/issues/6836)) ([728e77a](https://github.com/knqyf263/trivy/commit/728e77a7261dc3fcda1e61e79be066c789bbba0c))
+* Printf format err ([#6198](https://github.com/knqyf263/trivy/issues/6198)) ([876ab84](https://github.com/knqyf263/trivy/commit/876ab84b364238fbae9b53c9d9676873c6b89b4b))
+* **python:** add package name and version validation for `requirements.txt` files. ([#6804](https://github.com/knqyf263/trivy/issues/6804)) ([ea3a124](https://github.com/knqyf263/trivy/commit/ea3a124fc7162c30c7f1a59bdb28db0b3c8bb86d))
+* **python:** override BOM in `requirements.txt` files ([#5375](https://github.com/knqyf263/trivy/issues/5375)) ([24a0d92](https://github.com/knqyf263/trivy/commit/24a0d921453c2e5b46a3470e12ef9bdb4dcd2c60))
+* Report error when os.CreateTemp fails (to be consistent with other uses) ([#5342](https://github.com/knqyf263/trivy/issues/5342)) ([ced54ac](https://github.com/knqyf263/trivy/commit/ced54aced1b31230e9b73f64760a873ef94e6cb2))
+* **report:** add escaping for Sarif format ([#5568](https://github.com/knqyf263/trivy/issues/5568)) ([5372067](https://github.com/knqyf263/trivy/commit/53720676116352eb2082f46a42df6298eb04dec7))
+* **report:** add escaping quotes in misconfig Title for asff template ([#5351](https://github.com/knqyf263/trivy/issues/5351)) ([20ab703](https://github.com/knqyf263/trivy/commit/20ab7033b8b113f74622bcb8feb6d8f2ec566882))
+* **report:** don't include empty strings in `.vulnerabilities[].identifiers[].url` when `gitlab.tpl` is used ([#6348](https://github.com/knqyf263/trivy/issues/6348)) ([1870f28](https://github.com/knqyf263/trivy/commit/1870f28461c0faa9c1cf2a7b1d756356a16af4fc))
+* **report:** don't mark misconfig passed tests as failed in junit.tpl ([#5767](https://github.com/knqyf263/trivy/issues/5767)) ([be5a550](https://github.com/knqyf263/trivy/commit/be5a550491f581311c938f7230b389cb10aacae7))
+* **report:** fix error if miconfigs are empty ([#5782](https://github.com/knqyf263/trivy/issues/5782)) ([c317fe8](https://github.com/knqyf263/trivy/commit/c317fe828d6d2630bad014d4f185037f3b24df2b))
+* **report:** hide empty tables if all vulns has been filtered ([#6352](https://github.com/knqyf263/trivy/issues/6352)) ([3d388d8](https://github.com/knqyf263/trivy/commit/3d388d8552ef42d4d54176309a38c1879008527b))
+* **report:** update Gitlab template ([#5721](https://github.com/knqyf263/trivy/issues/5721)) ([eb97419](https://github.com/knqyf263/trivy/commit/eb9741954ca809407148423c8826e3cb8af4ca19))
+* **report:** use `AWS_REGION` env for secrets in `asff` template ([#6011](https://github.com/knqyf263/trivy/issues/6011)) ([70dd572](https://github.com/knqyf263/trivy/commit/70dd572ef741856502bc369144312e327f947046))
+* **report:** use OS information for OS packages purl in `github` template ([#5783](https://github.com/knqyf263/trivy/issues/5783)) ([6cc00c2](https://github.com/knqyf263/trivy/commit/6cc00c2f0c18901522ed2e32d5b07912bb37b4a3))
+* **report:** use time.Time for CreatedAt ([#5598](https://github.com/knqyf263/trivy/issues/5598)) ([ae4bcf6](https://github.com/knqyf263/trivy/commit/ae4bcf6a063ea212623570e6ac6523db4e046679))
+* **sbom:** add `FilesAnalyzed` and `PackageVerificationCode` fields for SPDX ([#5533](https://github.com/knqyf263/trivy/issues/5533)) ([cb241a8](https://github.com/knqyf263/trivy/commit/cb241a800774a37527566dd3895575b935003f2b))
+* **sbom:** add check for `CreationInfo` to nil when detecting SPDX created using Trivy ([#6346](https://github.com/knqyf263/trivy/issues/6346)) ([e866bd5](https://github.com/knqyf263/trivy/commit/e866bd5b5d4a654c13436f516ef9c258a8367e86))
+* **sbom:** add missed `primaryURL` and `source severity` for CycloneDX ([#5399](https://github.com/knqyf263/trivy/issues/5399)) ([6040d9f](https://github.com/knqyf263/trivy/commit/6040d9f43a35819d4c0338839b97619338e753ed))
+* **sbom:** change error to warning for multiple OSes ([#6541](https://github.com/knqyf263/trivy/issues/6541)) ([d2d4022](https://github.com/knqyf263/trivy/commit/d2d4022ef36b0ccf583c9bf9436dfd75a742ee3d))
+* **sbom:** fix error when parent of SPDX Relationships is not a package. ([#6399](https://github.com/knqyf263/trivy/issues/6399)) ([5f69937](https://github.com/knqyf263/trivy/commit/5f69937cc6986912925a8a1b0801810ea850ba79))
+* **sbom:** fix panic for `convert` mode when scanning json file derived from sbom file ([#6808](https://github.com/knqyf263/trivy/issues/6808)) ([f92ea09](https://github.com/knqyf263/trivy/commit/f92ea096856c7c262b05bd4d31c62689ebafac82))
+* **sbom:** save digests for package/application when scanning SBOM files ([#5432](https://github.com/knqyf263/trivy/issues/5432)) ([ca50b77](https://github.com/knqyf263/trivy/commit/ca50b77a35670082530a99f41dfcdbac487f5fd1))
+* **sbom:** skip executable file analysis if Rekor isn't a specified SBOM source ([#6163](https://github.com/knqyf263/trivy/issues/6163)) ([7694df1](https://github.com/knqyf263/trivy/commit/7694df11fbd04e705383e527b5841fcb9a383cd5))
+* **sbom:** use `group` field for pom.xml and nodejs files for CycloneDX reports ([#5922](https://github.com/knqyf263/trivy/issues/5922)) ([c75143f](https://github.com/knqyf263/trivy/commit/c75143f5e82b3cd5c66c94241e51423bce26b936))
+* **sbom:** Use UUID as BomRef for packages with empty purl ([#5448](https://github.com/knqyf263/trivy/issues/5448)) ([772d1d0](https://github.com/knqyf263/trivy/commit/772d1d08f82a4db6013cd8ec3fc11ca409354948))
+* **secret:** `AWS Secret Access Key` must include only secrets with `aws` text. ([#5901](https://github.com/knqyf263/trivy/issues/5901)) ([958e1f1](https://github.com/knqyf263/trivy/commit/958e1f11f77076188bcdf0811bbd50be68d0a18b))
+* **secret:** add `sec` and space to secret prefix for `aws-secret-access-key` ([#5647](https://github.com/knqyf263/trivy/issues/5647)) ([8ff574e](https://github.com/knqyf263/trivy/commit/8ff574e3f732e5b94651431591bf18d6d497cf02))
+* **secret:** convert severity for custom rules ([#6500](https://github.com/knqyf263/trivy/issues/6500)) ([46d5aba](https://github.com/knqyf263/trivy/commit/46d5abad42bd4c4b6127d5a5053867728d619098))
+* **secret:** exclude upper case before secret for `alibaba-access-key-id` ([#5618](https://github.com/knqyf263/trivy/issues/5618)) ([b1dc60b](https://github.com/knqyf263/trivy/commit/b1dc60b88523cd4bddc25d5fb77c47e69198cc43))
+* **secret:** find aws secrets ending with a comma or dot ([#5921](https://github.com/knqyf263/trivy/issues/5921)) ([ae134a9](https://github.com/knqyf263/trivy/commit/ae134a9b3884c5fedaad1400863374e2c8c6897e))
+* **server:** add licenses to `BlobInfo` message ([#5382](https://github.com/knqyf263/trivy/issues/5382)) ([520830b](https://github.com/knqyf263/trivy/commit/520830b51b7681b64daa484854e3c1114898a589))
+* **server:** add Locations for `Packages` in client/server mode ([#6366](https://github.com/knqyf263/trivy/issues/6366)) ([a2482c1](https://github.com/knqyf263/trivy/commit/a2482c14e12df8e242b83361a9a3379691f65d95))
+* **swift:** try to use branch to resolve version ([#6168](https://github.com/knqyf263/trivy/issues/6168)) ([e787e1a](https://github.com/knqyf263/trivy/commit/e787e1af01c326c339aa0726ccc567e97c1facfa))
+* **terraform:** Attribute and fileset fixes ([#6544](https://github.com/knqyf263/trivy/issues/6544)) ([7c2017f](https://github.com/knqyf263/trivy/commit/7c2017fa7ad43b310ce487072ace269ed72e8c4a))
+* **terraform:** do not re-expand dynamic blocks ([#6151](https://github.com/knqyf263/trivy/issues/6151)) ([64926d8](https://github.com/knqyf263/trivy/commit/64926d8423d1e69ab4bde51f1e59ed56960f9bcb))
+* **terraform:** ensure consistent path handling across OS ([#6161](https://github.com/knqyf263/trivy/issues/6161)) ([327cf88](https://github.com/knqyf263/trivy/commit/327cf88397a12809a7388928d6fc27a7e6bfe66d))
+* **terraform:** eval submodules ([#6411](https://github.com/knqyf263/trivy/issues/6411)) ([13190e9](https://github.com/knqyf263/trivy/commit/13190e92d9fea1277389fc09fba0418c05c5f44f))
+* **terraform:** fix policy document retrieval ([#6276](https://github.com/knqyf263/trivy/issues/6276)) ([102b6df](https://github.com/knqyf263/trivy/commit/102b6df7389f93229dfdb4463bb18986cb7ef432))
+* **terraform:** fix root module search ([#6160](https://github.com/knqyf263/trivy/issues/6160)) ([1dfece8](https://github.com/knqyf263/trivy/commit/1dfece89d0c7c8dec73b6e3be8e7fabf1fca4a39))
+* **terraform:** сhecking SSE encryption algorithm validity ([#6341](https://github.com/knqyf263/trivy/issues/6341)) ([abd62ae](https://github.com/knqyf263/trivy/commit/abd62ae74e6b3d7c785717643bb254ecfef0fdac))
+* trivy k8s avoid deleting non-default node collector namespace  ([#6559](https://github.com/knqyf263/trivy/issues/6559)) ([8e6cd0e](https://github.com/knqyf263/trivy/commit/8e6cd0e917fb54f72ca8054e2d94c3f53f764134))
+* trivy k8s parse ecr image with arn ([#5537](https://github.com/knqyf263/trivy/issues/5537)) ([91fc8da](https://github.com/knqyf263/trivy/commit/91fc8dac92d0f20cae24c7009ecf00f8caaf4f7f))
+* typo ([#6283](https://github.com/knqyf263/trivy/issues/6283)) ([1ba5b59](https://github.com/knqyf263/trivy/commit/1ba5b59527d161b44830700b678229beb302c0ad))
+* typo function name and comment optimization ([#6200](https://github.com/knqyf263/trivy/issues/6200)) ([3d2f583](https://github.com/knqyf263/trivy/commit/3d2f583ecd712d4879d98ca24b9b30fbf540643e))
+* use `0600` perms for tmp files for post analyzers ([#6386](https://github.com/knqyf263/trivy/issues/6386)) ([9d7f5c9](https://github.com/knqyf263/trivy/commit/9d7f5c948e30af7b76cbe32b8e53070fb5bfd16b))
+* use of specified context to obtain cluster name ([#6645](https://github.com/knqyf263/trivy/issues/6645)) ([39ebed4](https://github.com/knqyf263/trivy/commit/39ebed45f8c218509d264bd3f3ca548fc33d2b3a))
+* **vex:** CSAF filtering should consider relationships ([#5923](https://github.com/knqyf263/trivy/issues/5923)) ([9c5e5a0](https://github.com/knqyf263/trivy/commit/9c5e5a04ee691f0f9ad064bd0cedec3b317f6bd8))
+* **vm:** update ext4-filesystem fix reading groupdescriptor in 32bit mode ([#5888](https://github.com/knqyf263/trivy/issues/5888)) ([0ebb6c4](https://github.com/knqyf263/trivy/commit/0ebb6c46820f682f5c153f0b697b4e6785078edf))
+* **vuln:** skip empty versions ([#6542](https://github.com/knqyf263/trivy/issues/6542)) ([164b025](https://github.com/knqyf263/trivy/commit/164b025413c5fb9c6759491e9a306b46b869be93))
+
+
+### Performance Improvements
+
+* **helm:** load in-memory files ([#6383](https://github.com/knqyf263/trivy/issues/6383)) ([1a67472](https://github.com/knqyf263/trivy/commit/1a67472d2bd6efaf0d0698365d877145f8bc7551))
+* **misconf:** Improve cause performance ([#6586](https://github.com/knqyf263/trivy/issues/6586)) ([770b141](https://github.com/knqyf263/trivy/commit/770b14113cbbaaf55ff26ac8ba160800951b4386))
+* **misconf:** parse rego input once ([#6615](https://github.com/knqyf263/trivy/issues/6615)) ([67c6b1d](https://github.com/knqyf263/trivy/commit/67c6b1d473999003d682bdb42657bbf3a4a69a9c))
+
+
+### Reverts
+
+* **report:** don't escape new line characters for sarif format ([#5897](https://github.com/knqyf263/trivy/issues/5897)) ([56c4e24](https://github.com/knqyf263/trivy/commit/56c4e248aa3fe95097ce495bac459208a4cf8baa))
+
 ## [0.52.0](https://github.com/aquasecurity/trivy/compare/v0.51.1...v0.52.0) (2024-06-03)