## [3.10.2](https://gitlab.com/to-be-continuous/maven/compare/3.10.1...3.10.2) (2024-07-06)

### Bug Fixes

* replace `packages` by `scan` command ([51dc6c99](https://gitlab.com/to-be-continuous/maven/commit/51dc6c990ab1158adb3fe0763768eab78f7fb406))

fix: replace `packages` by `scan` command

See merge request to-be-continuous/maven!87

Since v0.100.0 the `packages` sub command was replaced by `scan`.
https://github.com/anchore/syft/commit/4c20a74d2fc6774b7745b432995d5ff7836b90a0

## [3.10.1](https://gitlab.com/to-be-continuous/maven/compare/3.10.0...3.10.1) (2024-07-01)

### Bug Fixes

* **Jib:** Trivy 0.53.0 added the clean subcommand for semantic cache management ([6333e64e](https://gitlab.com/to-be-continuous/maven/commit/6333e64e61fb025ce758cdb275a6888d934b878b))

fix(variant): trivy 0.53.0 added the clean subcommand for semantic cache management

Closes #60

See merge request to-be-continuous/maven!86

# [3.10.0](https://gitlab.com/to-be-continuous/maven/compare/3.9.2...3.10.0) (2024-06-30)

### Bug Fixes

* add submodule pom files as job artifacts ([e6960e6b](https://gitlab.com/to-be-continuous/maven/commit/e6960e6b26be9fecb4ce69d38e12919a886132a0))

### Features

* add eval_all_secrets closes [#59](https://gitlab.com/to-be-continuous/maven/issues/59) ([c77193c4](https://gitlab.com/to-be-continuous/maven/commit/c77193c447fa897563b07ec0cc5a17ea02e229b8))

feat: add eval_all_secrets closes #59

Closes #59

See merge request to-be-continuous/maven!85

fix: Add submodule .pom files as job artifacts

Closes #58

See merge request to-be-continuous/maven!84

chore(deps): update dependency to-be-continuous/semantic-release to v3.11

See merge request to-be-continuous/maven!83

ci(security): add Gitleaks scan

See merge request to-be-continuous/maven!82

chore(deps): update dependency to-be-continuous/semantic-release to v3.10

See merge request to-be-continuous/maven!80

## [3.9.2](https://gitlab.com/to-be-continuous/maven/compare/3.9.1...3.9.2) (2024-05-05)

### Bug Fixes

* **workflow:** disable MR pipeline from prod & integ branches ([3fc4c9ed](https://gitlab.com/to-be-continuous/maven/commit/3fc4c9edbded967df2f4c648672de8d51515bd7e))

Today creating a backmerge MR from prod or integ branch to any other branch triggers a pipeline
even though no change has been pushed.
Ultimately those pipelines might (re)trigger integration or production environment deployment and/or packages publication.
That might have unexpected consequences.
This change simply disables MR pipeline from prod & integ branches, enforcing branch pipelines only (i.e. when a true commit is pushed).

docs: Replaced / with : after hostname in scm example

See merge request to-be-continuous/maven!79

https://maven.apache.org/scm/git.html

chore(deps): update to-be-continuous dependencies

See merge request to-be-continuous/maven!77

## [3.9.1](https://gitlab.com/to-be-continuous/maven/compare/3.9.0...3.9.1) (2024-1-30)

### Bug Fixes

* sanitize variable substitution pattern ([f3164e86](https://gitlab.com/to-be-continuous/maven/commit/f3164e86c50e730af74c032ee0fb3c05c7005106))

replace '${foo+repl}' pattern with '${foo:+repl}' (latest supports $foo being defined but empty)

# [3.9.0](https://gitlab.com/to-be-continuous/maven/compare/3.8.0...3.9.0) (2024-1-27)

### Features

* GitLab CI/CD component migration ([5c32520f](https://gitlab.com/to-be-continuous/maven/commit/5c32520f6eecc18b58b2b2cf0f4326e04e023cec))

GitLab CI/CD component migration

See merge request to-be-continuous/maven!74

⚠️ requires GitLab 16.6 or later

chore(deps): update to-be-continuous dependencies

See merge request to-be-continuous/maven!76

# [3.8.0](https://gitlab.com/to-be-continuous/maven/compare/3.7.1...3.8.0) (2023-12-8)

### Features

* use centralized tracking image (gitlab.com) ([6d11997d](https://gitlab.com/to-be-continuous/maven/commit/6d11997d1894711795685416b3c2aa574b3a77cb))

docs: how to set NVD api key and data feed url for dependency-check

Closes #49

See merge request to-be-continuous/maven!75