{"id":7089,"name":"aquasec/trivy","ecosystem":"docker","repository_url":null,"issues_count":46,"created_at":"2025-06-06T22:08:47.193Z","updated_at":"2025-06-06T22:08:47.193Z","purl":"pkg:docker/aquasec/trivy","metadata":{"id":5475531,"name":"aquasec/trivy","ecosystem":"docker","description":"Trivy is an all-in-one, cloud native security scanner","homepage":null,"licenses":null,"normalized_licenses":[],"repository_url":null,"keywords_array":[],"namespace":"aquasec","versions_count":560,"first_release_published_at":"2019-08-23T08:38:34.578Z","latest_release_published_at":"2024-10-03T15:04:32.303Z","latest_release_number":"0.56.1","last_synced_at":"2024-09-12T17:06:55.319Z","created_at":"2022-11-26T00:21:20.930Z","updated_at":"2024-11-21T15:27:35.554Z","registry_url":"https://hub.docker.com/r/aquasec/trivy","install_command":"docker pull aquasec/trivy","documentation_url":null,"metadata":{},"repo_metadata":null,"repo_metadata_updated_at":null,"dependent_packages_count":0,"downloads":91954521,"downloads_period":"total","dependent_repos_count":29,"rankings":{"downloads":0.042288629379774206,"dependent_repos_count":0.10733947615657728,"dependent_packages_count":0.0,"stargazers_count":null,"forks_count":null,"docker_downloads_count":null,"average":0.04987603517878383},"purl":"pkg:docker/aquasec%2Ftrivy","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/docker/aquasec/trivy","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/docker/aquasec/trivy","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/docker/aquasec/trivy/dependencies","status":null,"funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/aquasec%2Ftrivy/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/aquasec%2Ftrivy/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/aquasec%2Ftrivy/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/aquasec%2Ftrivy/related_packages","maintainers":[],"registry":{"name":"hub.docker.com","url":"https://hub.docker.com","ecosystem":"docker","default":true,"packages_count":1002007,"maintainers_count":0,"namespaces_count":411568,"keywords_count":1704,"github":"docker","metadata":{"api_url":"https://registry-1.docker.io","funded_packages_count":257},"icon_url":"https://github.com/docker.png","created_at":"2022-11-24T17:07:36.388Z","updated_at":"2025-06-07T05:40:29.049Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/namespaces"}},"unique_repositories_count":7,"unique_repositories_count_past_30_days":1,"recent_issues":[{"uuid":"3877784677","node_id":"PR_kwDONCppvc7AgAPz","number":29,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.69.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-05T23:13:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-30T23:13:33.000Z","updated_at":"2026-02-05T23:13:51.000Z","time_to_close":518416,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.69.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.69.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.69.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/29","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/29","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/29/packages"},{"uuid":"3741525036","node_id":"PR_kwDOMd_hPs65gh46","number":426,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.68.1 to 0.68.2 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","patch","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-18T05:28:32.000Z","updated_at":"2025-12-18T05:29:00.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.68.1","new_version":"0.68.2","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.68.1 to 0.68.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.68.1\u0026new-version=0.68.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/426","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/426","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/426/packages"},{"uuid":"3740801338","node_id":"PR_kwDONCppvc65eI2p","number":28,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.68.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-30T23:13:35.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-17T23:12:04.000Z","updated_at":"2026-01-30T23:13:36.000Z","time_to_close":3801691,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.68.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.68.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.68.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"},{"uuid":"3729545715","node_id":"PR_kwDOPaNncM644FAF","number":13599,"state":"closed","title":"deps(docker): bump aquasec/trivy from 0.51.1 to 0.68.1","user":"dependabot[bot]","labels":["dependencies","docker","type: security","auto-merge-candidate","size: XS","size/xs"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2025-12-15T09:30:03.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-15T09:29:53.000Z","updated_at":"2025-12-15T09:33:29.000Z","time_to_close":10,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"aquasec/trivy","old_version":"0.51.1","new_version":"0.68.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.51.1 to 0.68.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.51.1\u0026new-version=0.68.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/BrianCLong/summit/pull/13599","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BrianCLong%2Fsummit/issues/13599","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13599/packages"},{"uuid":"3692663499","node_id":"PR_kwDOF3eXvs629kJW","number":10650,"state":"closed","title":"Bump aquasec/trivy from 0.67.2 to 0.68.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-04T22:05:44.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-04T03:06:06.000Z","updated_at":"2025-12-04T22:05:46.000Z","time_to_close":68378,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"aquasec/trivy","old_version":"0.67.2","new_version":"0.68.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.67.2 to 0.68.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.67.2\u0026new-version=0.68.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10650","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10650","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10650/packages"},{"uuid":"3590322835","node_id":"PR_kwDOGeEcos6xnPda","number":3151,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.65.0 to 0.67.2 in /images/devtools-terraform-v1beta1/context","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-05T14:26:33.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-05T10:27:17.000Z","updated_at":"2025-11-05T14:26:34.000Z","time_to_close":14356,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.67.2","repository_url":null}],"path":"/images/devtools-terraform-v1beta1/context","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @pravindahal.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/engineering-docker-images/pull/3151","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fengineering-docker-images/issues/3151","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3151/packages"},{"uuid":"3508496637","node_id":"PR_kwDOMd_hPs6tYW_F","number":292,"state":"closed","title":"chore(deps): Bump aquasec/trivy from 0.67.0 to 0.67.2 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","patch","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-10-20T19:25:10.000Z","author_association":null,"state_reason":null,"created_at":"2025-10-13T05:19:57.000Z","updated_at":"2025-10-20T19:25:35.000Z","time_to_close":655513,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.67.0","new_version":"0.67.2","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.67.0 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.67.0\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @nhhagen.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/292","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/292","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/292/packages"},{"uuid":"3504731355","node_id":"PR_kwDONCppvc6tMH1P","number":25,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.67.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-03T23:13:17.000Z","author_association":null,"state_reason":null,"created_at":"2025-10-10T23:10:38.000Z","updated_at":"2025-12-03T23:13:19.000Z","time_to_close":4665759,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.67.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/25","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/25","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/25/packages"},{"uuid":"3503770231","node_id":"PR_kwDOGajMB86tI0rT","number":359,"state":"closed","title":"chore(deps): bump aquasec/trivy from 0.67.0 to 0.67.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-05T17:01:10.000Z","author_association":null,"state_reason":null,"created_at":"2025-10-10T17:01:32.000Z","updated_at":"2025-12-05T17:01:11.000Z","time_to_close":4838378,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.67.0","new_version":"0.67.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.67.0 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.67.0\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pointvy/pointvy/pull/359","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pointvy%2Fpointvy/issues/359","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/359/packages"},{"uuid":"2876916670","node_id":"PR_kwDOMd_hPs6rekO-","number":278,"state":"closed","title":"chore(deps): Bump aquasec/trivy from 0.66.0 to 0.67.0 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","minor","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-10-03T10:46:43.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-01T05:23:24.000Z","updated_at":"2025-10-03T10:46:43.000Z","time_to_close":192199,"merged_at":"2025-10-03T10:46:42.000Z","merged_by":"dependabot[bot]","closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.66.0","new_version":"0.67.0","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.66.0 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.66.0\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @pravindahal.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/278","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/278","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/278/packages"},{"uuid":"2876916309","node_id":"PR_kwDOMd_hPs6rekJV","number":277,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.66.0 to 0.67.0 in /internal/targets/terraform","user":"dependabot[bot]","labels":["dependencies","docker","minor"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-01T05:23:16.000Z","updated_at":"2025-10-01T05:23:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.66.0","new_version":"0.67.0","repository_url":null}],"path":"/internal/targets/terraform","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.66.0 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.66.0\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/277","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/277","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/277/packages"},{"uuid":"3471829374","node_id":"PR_kwDOF3eXvs6rdtOV","number":10157,"state":"closed","title":"Bump aquasec/trivy from 0.66.0 to 0.67.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-10-01T21:08:34.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-01T03:07:25.000Z","updated_at":"2025-10-01T21:08:34.000Z","time_to_close":64869,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"aquasec/trivy","old_version":"0.66.0","new_version":"0.67.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.66.0 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.66.0\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10157","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10157","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10157/packages"},{"uuid":"2876262413","node_id":"PR_kwDONCppvc6rcEgN","number":23,"state":"open","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.67.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-30T23:13:48.000Z","updated_at":"2025-09-30T23:13:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.67.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"},{"uuid":"2803179280","node_id":"PR_kwDOGajMB86nFR8Q","number":350,"state":"open","title":"chore(deps): bump aquasec/trivy from 0.65.0 to 0.66.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-05T17:01:37.000Z","updated_at":"2025-09-05T17:01:38.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pointvy/pointvy/pull/350","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pointvy%2Fpointvy/issues/350","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/350/packages"},{"uuid":"2798016570","node_id":"PR_kwDOBwcGbc6mxlg6","number":247,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.65.0 to 0.66.0 in /tools/toolbox","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-09-04T17:58:46.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-04T05:08:20.000Z","updated_at":"2025-09-04T17:58:47.000Z","time_to_close":46226,"merged_at":"2025-09-04T17:58:46.000Z","merged_by":"laurentquillerou","closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":"/tools/toolbox","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/laurentquillerou/dotconf/pull/247","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/laurentquillerou%2Fdotconf/issues/247","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/247/packages"},{"uuid":"2797707424","node_id":"PR_kwDOMd_hPs6mwaCg","number":249,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.65.0 to 0.66.0 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","minor"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-04T01:32:10.000Z","updated_at":"2025-09-04T01:32:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/249","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/249","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/249/packages"},{"uuid":"2797073391","node_id":"PR_kwDOF3eXvs6mt_Pv","number":10008,"state":"closed","title":"Bump aquasec/trivy from 0.65.0 to 0.66.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-05T18:04:14.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-03T20:01:02.000Z","updated_at":"2025-09-05T18:04:14.000Z","time_to_close":165792,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10008","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10008","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10008/packages"},{"uuid":"2713823404","node_id":"PR_kwDOGajMB86hwais","number":339,"state":"closed","title":"chore(deps): bump aquasec/trivy from 0.63.0 to 0.65.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-08-01T19:05:56.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-01T17:08:58.000Z","updated_at":"2025-08-01T19:05:56.000Z","time_to_close":7018,"merged_at":"2025-08-01T19:05:56.000Z","merged_by":"leschard","closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.63.0","new_version":"0.65.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.63.0 to 0.65.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.63.0\u0026new-version=0.65.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pointvy/pointvy/pull/339","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pointvy%2Fpointvy/issues/339","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/339/packages"},{"uuid":"2712119822","node_id":"PR_kwDOMd_hPs6hp6oO","number":212,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.64.0 to 0.65.0 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","minor"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-01T06:10:32.000Z","updated_at":"2025-08-04T08:08:57.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.64.0","new_version":"0.65.0","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.64.0 to 0.65.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.64.0\u0026new-version=0.65.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/212","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/212","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/212/packages"},{"uuid":"2712119771","node_id":"PR_kwDOMd_hPs6hp6nb","number":211,"state":"closed","title":"chore(deps): Bump aquasec/trivy from 0.64.0 to 0.65.0 in /internal/targets/terraform","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","minor","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-08-04T12:23:13.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-01T06:10:29.000Z","updated_at":"2025-08-04T12:23:13.000Z","time_to_close":281564,"merged_at":"2025-08-04T12:23:13.000Z","merged_by":"dependabot[bot]","closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.64.0","new_version":"0.65.0","repository_url":null}],"path":"/internal/targets/terraform","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.64.0 to 0.65.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.64.0\u0026new-version=0.65.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @pravindahal.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/211","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/211","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/211/packages"}],"issue_packages":[{"old_version":"0.62.1","new_version":"0.69.0","update_type":"minor","path":null,"pr_created_at":"2026-01-30T23:13:33.000Z","version_change":"0.62.1 → 0.69.0","issue":{"uuid":"3877784677","node_id":"PR_kwDONCppvc7AgAPz","number":29,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.69.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-05T23:13:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-30T23:13:33.000Z","updated_at":"2026-02-05T23:13:51.000Z","time_to_close":518416,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.69.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.69.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.69.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/29","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/29","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/29/packages"}},{"old_version":"0.68.1","new_version":"0.68.2","update_type":"patch","path":"/internal/terraform/testdata","pr_created_at":"2025-12-18T05:28:32.000Z","version_change":"0.68.1 → 0.68.2","issue":{"uuid":"3741525036","node_id":"PR_kwDOMd_hPs65gh46","number":426,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.68.1 to 0.68.2 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","patch","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-18T05:28:32.000Z","updated_at":"2025-12-18T05:29:00.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.68.1","new_version":"0.68.2","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.68.1 to 0.68.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.68.1\u0026new-version=0.68.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/426","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/426","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/426/packages"}},{"old_version":"0.62.1","new_version":"0.68.2","update_type":"minor","path":null,"pr_created_at":"2025-12-17T23:12:04.000Z","version_change":"0.62.1 → 0.68.2","issue":{"uuid":"3740801338","node_id":"PR_kwDONCppvc65eI2p","number":28,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.68.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-30T23:13:35.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-17T23:12:04.000Z","updated_at":"2026-01-30T23:13:36.000Z","time_to_close":3801691,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.68.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.68.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.68.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"}},{"old_version":"0.51.1","new_version":"0.68.1","update_type":"minor","path":null,"pr_created_at":"2025-12-15T09:29:53.000Z","version_change":"0.51.1 → 0.68.1","issue":{"uuid":"3729545715","node_id":"PR_kwDOPaNncM644FAF","number":13599,"state":"closed","title":"deps(docker): bump aquasec/trivy from 0.51.1 to 0.68.1","user":"dependabot[bot]","labels":["dependencies","docker","type: security","auto-merge-candidate","size: XS","size/xs"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2025-12-15T09:30:03.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-15T09:29:53.000Z","updated_at":"2025-12-15T09:33:29.000Z","time_to_close":10,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"aquasec/trivy","old_version":"0.51.1","new_version":"0.68.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.51.1 to 0.68.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.51.1\u0026new-version=0.68.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/BrianCLong/summit/pull/13599","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BrianCLong%2Fsummit/issues/13599","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13599/packages"}},{"old_version":"0.67.2","new_version":"0.68.1","update_type":"minor","path":null,"pr_created_at":"2025-12-04T03:06:06.000Z","version_change":"0.67.2 → 0.68.1","issue":{"uuid":"3692663499","node_id":"PR_kwDOF3eXvs629kJW","number":10650,"state":"closed","title":"Bump aquasec/trivy from 0.67.2 to 0.68.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-04T22:05:44.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-04T03:06:06.000Z","updated_at":"2025-12-04T22:05:46.000Z","time_to_close":68378,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"aquasec/trivy","old_version":"0.67.2","new_version":"0.68.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.67.2 to 0.68.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.67.2\u0026new-version=0.68.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10650","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10650","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10650/packages"}},{"old_version":"0.65.0","new_version":"0.67.2","update_type":"minor","path":"/images/devtools-terraform-v1beta1/context","pr_created_at":"2025-11-05T10:27:17.000Z","version_change":"0.65.0 → 0.67.2","issue":{"uuid":"3590322835","node_id":"PR_kwDOGeEcos6xnPda","number":3151,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.65.0 to 0.67.2 in /images/devtools-terraform-v1beta1/context","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-05T14:26:33.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-05T10:27:17.000Z","updated_at":"2025-11-05T14:26:34.000Z","time_to_close":14356,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.67.2","repository_url":null}],"path":"/images/devtools-terraform-v1beta1/context","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @pravindahal.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/engineering-docker-images/pull/3151","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fengineering-docker-images/issues/3151","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3151/packages"}},{"old_version":"0.67.0","new_version":"0.67.2","update_type":"patch","path":"/internal/terraform/testdata","pr_created_at":"2025-10-13T05:19:57.000Z","version_change":"0.67.0 → 0.67.2","issue":{"uuid":"3508496637","node_id":"PR_kwDOMd_hPs6tYW_F","number":292,"state":"closed","title":"chore(deps): Bump aquasec/trivy from 0.67.0 to 0.67.2 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","patch","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-10-20T19:25:10.000Z","author_association":null,"state_reason":null,"created_at":"2025-10-13T05:19:57.000Z","updated_at":"2025-10-20T19:25:35.000Z","time_to_close":655513,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.67.0","new_version":"0.67.2","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.67.0 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.67.0\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @nhhagen.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/292","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/292","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/292/packages"}},{"old_version":"0.62.1","new_version":"0.67.2","update_type":"minor","path":null,"pr_created_at":"2025-10-10T23:10:38.000Z","version_change":"0.62.1 → 0.67.2","issue":{"uuid":"3504731355","node_id":"PR_kwDONCppvc6tMH1P","number":25,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.67.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-03T23:13:17.000Z","author_association":null,"state_reason":null,"created_at":"2025-10-10T23:10:38.000Z","updated_at":"2025-12-03T23:13:19.000Z","time_to_close":4665759,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.67.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/25","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/25","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/25/packages"}},{"old_version":"0.67.0","new_version":"0.67.2","update_type":"patch","path":null,"pr_created_at":"2025-10-10T17:01:32.000Z","version_change":"0.67.0 → 0.67.2","issue":{"uuid":"3503770231","node_id":"PR_kwDOGajMB86tI0rT","number":359,"state":"closed","title":"chore(deps): bump aquasec/trivy from 0.67.0 to 0.67.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-05T17:01:10.000Z","author_association":null,"state_reason":null,"created_at":"2025-10-10T17:01:32.000Z","updated_at":"2025-12-05T17:01:11.000Z","time_to_close":4838378,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.67.0","new_version":"0.67.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.67.0 to 0.67.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.67.0\u0026new-version=0.67.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pointvy/pointvy/pull/359","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pointvy%2Fpointvy/issues/359","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/359/packages"}},{"old_version":"0.66.0","new_version":"0.67.0","update_type":"minor","path":"/internal/terraform/testdata","pr_created_at":"2025-10-01T05:23:24.000Z","version_change":"0.66.0 → 0.67.0","issue":{"uuid":"2876916670","node_id":"PR_kwDOMd_hPs6rekO-","number":278,"state":"closed","title":"chore(deps): Bump aquasec/trivy from 0.66.0 to 0.67.0 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","minor","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-10-03T10:46:43.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-01T05:23:24.000Z","updated_at":"2025-10-03T10:46:43.000Z","time_to_close":192199,"merged_at":"2025-10-03T10:46:42.000Z","merged_by":"dependabot[bot]","closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.66.0","new_version":"0.67.0","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.66.0 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.66.0\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @pravindahal.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/278","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/278","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/278/packages"}},{"old_version":"0.66.0","new_version":"0.67.0","update_type":"minor","path":"/internal/targets/terraform","pr_created_at":"2025-10-01T05:23:16.000Z","version_change":"0.66.0 → 0.67.0","issue":{"uuid":"2876916309","node_id":"PR_kwDOMd_hPs6rekJV","number":277,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.66.0 to 0.67.0 in /internal/targets/terraform","user":"dependabot[bot]","labels":["dependencies","docker","minor"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-01T05:23:16.000Z","updated_at":"2025-10-01T05:23:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.66.0","new_version":"0.67.0","repository_url":null}],"path":"/internal/targets/terraform","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.66.0 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.66.0\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/277","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/277","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/277/packages"}},{"old_version":"0.66.0","new_version":"0.67.0","update_type":"minor","path":null,"pr_created_at":"2025-10-01T03:07:25.000Z","version_change":"0.66.0 → 0.67.0","issue":{"uuid":"3471829374","node_id":"PR_kwDOF3eXvs6rdtOV","number":10157,"state":"closed","title":"Bump aquasec/trivy from 0.66.0 to 0.67.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-10-01T21:08:34.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-01T03:07:25.000Z","updated_at":"2025-10-01T21:08:34.000Z","time_to_close":64869,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"aquasec/trivy","old_version":"0.66.0","new_version":"0.67.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.66.0 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.66.0\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10157","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10157","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10157/packages"}},{"old_version":"0.62.1","new_version":"0.67.0","update_type":"minor","path":null,"pr_created_at":"2025-09-30T23:13:48.000Z","version_change":"0.62.1 → 0.67.0","issue":{"uuid":"2876262413","node_id":"PR_kwDONCppvc6rcEgN","number":23,"state":"open","title":"build(deps): bump aquasec/trivy from 0.62.1 to 0.67.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-30T23:13:48.000Z","updated_at":"2025-09-30T23:13:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.62.1","new_version":"0.67.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.62.1 to 0.67.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.62.1\u0026new-version=0.67.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Articola-Tools/dockerfile-security-scanner/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Articola-Tools%2Fdockerfile-security-scanner/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"}},{"old_version":"0.65.0","new_version":"0.66.0","update_type":"minor","path":null,"pr_created_at":"2025-09-05T17:01:37.000Z","version_change":"0.65.0 → 0.66.0","issue":{"uuid":"2803179280","node_id":"PR_kwDOGajMB86nFR8Q","number":350,"state":"open","title":"chore(deps): bump aquasec/trivy from 0.65.0 to 0.66.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-05T17:01:37.000Z","updated_at":"2025-09-05T17:01:38.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pointvy/pointvy/pull/350","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pointvy%2Fpointvy/issues/350","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/350/packages"}},{"old_version":"0.65.0","new_version":"0.66.0","update_type":"minor","path":"/tools/toolbox","pr_created_at":"2025-09-04T05:08:20.000Z","version_change":"0.65.0 → 0.66.0","issue":{"uuid":"2798016570","node_id":"PR_kwDOBwcGbc6mxlg6","number":247,"state":"closed","title":"build(deps): bump aquasec/trivy from 0.65.0 to 0.66.0 in /tools/toolbox","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-09-04T17:58:46.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-04T05:08:20.000Z","updated_at":"2025-09-04T17:58:47.000Z","time_to_close":46226,"merged_at":"2025-09-04T17:58:46.000Z","merged_by":"laurentquillerou","closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":"/tools/toolbox","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/laurentquillerou/dotconf/pull/247","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/laurentquillerou%2Fdotconf/issues/247","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/247/packages"}},{"old_version":"0.65.0","new_version":"0.66.0","update_type":"minor","path":"/internal/terraform/testdata","pr_created_at":"2025-09-04T01:32:10.000Z","version_change":"0.65.0 → 0.66.0","issue":{"uuid":"2797707424","node_id":"PR_kwDOMd_hPs6mwaCg","number":249,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.65.0 to 0.66.0 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","minor"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-04T01:32:10.000Z","updated_at":"2025-09-04T01:32:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/249","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/249","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/249/packages"}},{"old_version":"0.65.0","new_version":"0.66.0","update_type":"minor","path":null,"pr_created_at":"2025-09-03T20:01:02.000Z","version_change":"0.65.0 → 0.66.0","issue":{"uuid":"2797073391","node_id":"PR_kwDOF3eXvs6mt_Pv","number":10008,"state":"closed","title":"Bump aquasec/trivy from 0.65.0 to 0.66.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-05T18:04:14.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-03T20:01:02.000Z","updated_at":"2025-09-05T18:04:14.000Z","time_to_close":165792,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"aquasec/trivy","old_version":"0.65.0","new_version":"0.66.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.65.0 to 0.66.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.65.0\u0026new-version=0.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10008","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10008","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10008/packages"}},{"old_version":"0.63.0","new_version":"0.65.0","update_type":"minor","path":null,"pr_created_at":"2025-08-01T17:08:58.000Z","version_change":"0.63.0 → 0.65.0","issue":{"uuid":"2713823404","node_id":"PR_kwDOGajMB86hwais","number":339,"state":"closed","title":"chore(deps): bump aquasec/trivy from 0.63.0 to 0.65.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-08-01T19:05:56.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-01T17:08:58.000Z","updated_at":"2025-08-01T19:05:56.000Z","time_to_close":7018,"merged_at":"2025-08-01T19:05:56.000Z","merged_by":"leschard","closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"aquasec/trivy","old_version":"0.63.0","new_version":"0.65.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.63.0 to 0.65.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.63.0\u0026new-version=0.65.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pointvy/pointvy/pull/339","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pointvy%2Fpointvy/issues/339","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/339/packages"}},{"old_version":"0.64.0","new_version":"0.65.0","update_type":"minor","path":"/internal/terraform/testdata","pr_created_at":"2025-08-01T06:10:32.000Z","version_change":"0.64.0 → 0.65.0","issue":{"uuid":"2712119822","node_id":"PR_kwDOMd_hPs6hp6oO","number":212,"state":"open","title":"chore(deps): Bump aquasec/trivy from 0.64.0 to 0.65.0 in /internal/terraform/testdata","user":"dependabot[bot]","labels":["dependencies","docker","minor"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-01T06:10:32.000Z","updated_at":"2025-08-04T08:08:57.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.64.0","new_version":"0.65.0","repository_url":null}],"path":"/internal/terraform/testdata","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.64.0 to 0.65.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.64.0\u0026new-version=0.65.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/212","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/212","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/212/packages"}},{"old_version":"0.64.0","new_version":"0.65.0","update_type":"minor","path":"/internal/targets/terraform","pr_created_at":"2025-08-01T06:10:29.000Z","version_change":"0.64.0 → 0.65.0","issue":{"uuid":"2712119771","node_id":"PR_kwDOMd_hPs6hp6nb","number":211,"state":"closed","title":"chore(deps): Bump aquasec/trivy from 0.64.0 to 0.65.0 in /internal/targets/terraform","user":"dependabot[bot]","labels":["dependencies","docker","release-drafter-go:patch","minor","release-drafter:patch","release-drafter:dependency","release-drafter:chore"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-08-04T12:23:13.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-01T06:10:29.000Z","updated_at":"2025-08-04T12:23:13.000Z","time_to_close":281564,"merged_at":"2025-08-04T12:23:13.000Z","merged_by":"dependabot[bot]","closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"aquasec/trivy","old_version":"0.64.0","new_version":"0.65.0","repository_url":null}],"path":"/internal/targets/terraform","ecosystem":"docker"},"body":"Bumps aquasec/trivy from 0.64.0 to 0.65.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aquasec/trivy\u0026package-manager=docker\u0026previous-version=0.64.0\u0026new-version=0.65.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @pravindahal.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/coopnorge/mage/pull/211","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coopnorge%2Fmage/issues/211","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/211/packages"}}]}