Tag
release-notes
Safeguard articles tagged "release-notes" — guides, analysis, and best practices for software supply chain and application security.
14 articles
Tools
Trivy v0.69 Release Deep Dive
Aqua's Trivy hit v0.69 in late 2025 with VEX-by-default scanning, ArtifactID/ReportID provenance fields, and faster misconfig scanning. We test the upgrade on a 1.2GB image.
Nov 4, 20255 min read
Tools
CodeQL 2.22 Security Query Pack Review
GitHub's CodeQL 2.22.4 runs 478 security queries by default across 169 CWEs. We map the new queries added in 2025 and benchmark scan times on real repos.
Sep 9, 20256 min read