-
For trivy scan:
- the scan should fail if problematic code is being added in a PR
- the scan should succeed and upload sarif artifact in case of scheduled scans
For this, two different ways of in…
-
## Description:
We've identified an issue in our scanning process for Red Hat container images.
### Problem
Scanning fails for Red Hat container images that meet both of these criteria:
- Crea…
-
### The Feature
While running [Trivy security scan](https://github.com/aquasecurity/trivy) it found a number of high and critical security issues on the latest docker image `ghcr.io/berriai/litellm-d…
-
Flaky installation of MSCLI Analysis nuget package.
From time to time, the installation fails.
![image](https://github.com/user-attachments/assets/50f14d39-5b9b-4764-94f5-5be072ecc08c)
-
I'm encountering an issue where Trivy scans the entire repository instead of just the changed files or the latest commits.
I initially attempted the fetch-depth: 1 method in the checkout action, b…
-
Hi,
I've an issue with this tool, I haven't any results when I push a json results of K8s trivy scan.
It's perfectly work with OS trivy scan.
Is it normal ?
Thanks
Robs
-
We should look into the vulnerability scanning and our options compared to just dependabot.
@mykaul sugested to have a look at https://github.com/aquasecurity/trivy for example
-
I see in the example https://github.com/aquasecurity/trivy-action#trivy-action
that pipeline only pull Tracy image, however when I use the same action it causes building privy docker image every run
…
-
using the following command to scan
if sbom is found, trivy will use sbom instead. https://github.com/aquasecurity/trivy/blob/main/docs/docs/target/container_image.md#sbom
```sh
trivy image --…
-
## What
We are using private TF modules and in some cases, these modules are fairly opinionated to simplify the configuration for engineers, eg:
```
#trivy:ignore:AVD-AWS-0132
resource "aws_s3_b…