-
It would be great to scan the whole rootfs of the node (excluding common CRI directories like `/var/lib/containerd`).
This would scan for vulns in systemd, kubeadm, kubelet, ... and any binary loca…
-
### Context
The changes introduced by #73 set the exit code of the `aquasecurity/trivy-action` action to 1 to be able to know when a CVE is found. This is helpful for us because when the scan job end…
-
We've noticed that there are many base OS-level vulnerabilities reported (as per our Trivy scans) in the latest base Druid image and were wondering if it might make sense to consider moving up from `d…
-
**What steps did you take and what happened:**
[A clear and concise description of what the bug is.]
`
{"level":"error","ts":1680803506.314774,"logger":"scanner","msg":"error scanning image","provi…
-
**What steps did you take and what happened:**
1. deploy harbor components version 2.10.2.
2. on harbor portal, open the configuration of trivy adapter and click on `Test connection`.
3. harbor-c…
-
Checklist:
* [x] I've searched in the docs and FAQ for my answer: https://bit.ly/argocd-faq.
* [x] I've included steps to reproduce the bug.
* [x] I've pasted the output of `argocd version`.
…
-
### Expected Behavior
SBOM should contain purls with "pkg:golang/..." in it
### Actual Behavior
SBOM does not list any golang packages.
### Steps to Reproduce
Create container with golang binary.…
-
## Vulnerabilities found for viewer-crd-controller:2.3.0
```
For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in yo…
-
### Expected Behavior
Downloading arbitrary files should be provided out of the box by Gradle. Configuring it should be easy and straight forward. Gradle should take care of deciding whether a file…
-
### Description
A suggestion is to use [trivy](https://github.com/aquasecurity/trivy) it's free and works pretty well.
Running it locally like so: `trivy fs --severity HIGH,CRITICAL --exit-code …