linux/meta-security.git/recipes-scanners, branch master-next

arpwatch: fix typos

2026-05-17T14:44:55+00:00

APRWATCH_FROM -> ARPWATCH_FROM ARPWATH_REPLY -> ARPWATCH_REPLY CONFFILE_FILES -> CONFFILES:${PN} Signed-off-by: Yi Zhao Signed-off-by: Scott Murray

clamav: Upgrade to 1.4.4

2026-04-27T18:47:27+00:00

Release notes: https://github.com/Cisco-Talos/clamav/releases/tag/clamav-1.4.4 Signed-off-by: Scott Murray

libmspack: Remove

2026-04-27T18:47:27+00:00

Remove libmspack recipe, and remove it from clamav's DEPENDS. clamav now vendors its own substantially modified copy, so there's no reason to carry a recipe for it. Signed-off-by: Scott Murray

meta-security: fix incorrect HOMEPAGE variable names

2026-04-14T21:18:23+00:00

Several recipes used non-standard variable names for the homepage URL (HOME_PAGE, HOME_URL, HOMEDIR) which are not recognized by bitbake. Rename them all to the correct HOMEPAGE variable. Affected recipes: - glome: HOME_PAGE -> HOMEPAGE - google-authenticator-libpam: HOME_PAGE -> HOMEPAGE - arpwatch: HOME_PAGE -> HOMEPAGE - openscap: HOME_URL -> HOMEPAGE - scap-security-guide: HOME_URL -> HOMEPAGE - lynis: HOMEDIR -> HOMEPAGE Signed-off-by: Zhang Peng Signed-off-by: Scott Murray

clamav: Add recipe for version 1.4.3

2025-12-22T04:34:11+00:00

Add modern ClamAV 1.4.3 recipe with comprehensive improvements over the legacy 0.104.4 version. Remove the end-of-life 0.104.4 recipe and associated patches as they are superseded by this version. Major changes in 1.4.3: - Upgraded core engine with improved threat detection capabilities - Added Rust components requiring cross-compilation support - Updated CMake build system replacing legacy autotools - Modernized library dependencies (LLVM, JSON-C, PCre2) - Added comprehensive license compliance for multi-component package - Enhanced cross-compilation support for all target architectures The recipe includes dynamic Cargo configuration using Yocto variables to support cross-compilation to any target architecture supported by the build system. Runtime configuration improvements: - Set APP_CONFIG_DIRECTORY to ${sysconfdir}/clamav for proper config paths - Added volatiles/tmpfiles support for /var/lib/clamav and /var/log/clamav - Added pkg_postinst scripts to ensure correct directory ownership - Implemented CMake cache variables for cross-compilation - Updated all license checksums for compliance - Added Rust toolchain integration with automatic environment setup - Use Cargo vendoring with cargo + cargo-update-recipe-crates classes Security rationale: - ClamAV 0.104.4 reached end-of-life and is no longer maintained - Upstream strongly recommends migration to 1.4.x for security updates Signed-off-by: Hemant Jadhav (regenerated diff, fixed building with systemd, fixed target Rust configuration, disabled for 32-bit targets) Signed-off-by: Scott Murray

chkrootkit: fix building with gcc 15

2025-07-04T16:41:20+00:00

Add a patch to fix building chkrootkit with gcc 15. Signed-off-by: Scott Murray

chkrootkit: use Debian mirror

2025-07-04T16:41:20+00:00

Use the Debian mirror as the Ubuntu one is failing frequently. Signed-off-by: Marta Rybczynska Signed-off-by: Scott Murray

Adapt to S/UNPACKDIR changes

2025-07-04T16:41:20+00:00

Remove or update S definitions as required to work with oe-core S/UNPACKDIR changes. Signed-off-by: Scott Murray

Fix warning : lack of whitespace around assignment

2025-07-04T16:40:38+00:00

v2 : also fix some typos while we are here. v3 : add fixes for isic and checksecurity Signed-off-by: Jason Schonberg [removed already applied change] Signed-off-by: Scott Murray

chkroot: update to 0.58b

2024-12-16T17:50:11+00:00

LIC_FILES_CHKSUM changed due to yr update. Signed-off-by: Armin Kuster