What's Changed

Note: This is planned to be the last planned feature release before secureCodeBox v5.0.0.
In case of important bugs, we will still publish bug fix releases under 4.16.x :)

🚓 Security Scanner

• Upgraded gitleaks from v8.24.2 to v8.24.3 @secureCodeBoxBot (#2981)
• Upgraded kubeaudit from 0.22.1 to 0.22.2 @secureCodeBoxBot (#3001)
• Upgraded semgrep from 1.117.0 to 1.120.0 @secureCodeBoxBot (#2974, #2985, #2994)
• Upgraded trivy from 0.61.0 to 0.61.1 @secureCodeBoxBot (#2988)
• Upgraded trivy-sbom from 0.61.0 to 0.61.1 @secureCodeBoxBot (#2987)
• Add ARM support to Ncrack by @J12934 in #2996

⛩️ DefectDojo

• Use native DefectDojo Importer for SSH Audit results by @J12934 in #3004

🐛 Bug Fixes

• Fix Issue with nested Kubernetes Native Objects not being properly configurable in the Kubernetes AutoDiscovery Config by @BorisShek in #2982
• Fix Invalid ARM Image for DefectDojo hook by @J12934 in #2993

📚 Documentation

• Reorder sections in upgrading.md to list the newest first by @BorisShek in #3000
• Update supported Kubernetes versions by @J12934 in #3003
• Add Link to OWASP Stammtisch Hamburg Talk by @J12934 in #3005
• Fix ncrack config in network scanning how-to by @J12934 in #2995

🔧 Maintenance

• Update Gradle Version used for DefectDojo Hook by @Weltraumschaf in #2975

📌 Dependencies

• Update to Go to 1.24 & Update Go Libraries by @Weltraumschaf in #2978
• Bump golang.org/x/net from 0.37.0 to 0.38.0 in /auto-discovery/cloud-aws by @dependabot in #2986
• Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /documentation in the npm-security-updates group by @dependabot in #2992

Full Changelog: v4.15.0...v4.16.0