-
## What's the problem this feature will solve?
As part of our [ongoing collaboration](https://blog.gitguardian.com/uncovering-thousands-of-unique-secrets-in-pypi-packages/) to find exposed secrets …
-
## The problem
The secret-scanner will only partially work if `$baseline-file` dne.
This creates a problem because it requires anyone using this action must:
1. Know what `Yelp/detect-secrets` is…
-
Is there any way to scan for just the diff in a PR when integrating Trivy for secret scan in a PR, rather than having to scan the entire repo?
Current trivy file:
`
name: Secrets Check
on:
p…
-
I see that Istio is installed using the official release from Github. Is the whole release needed or is it just the `istioctl` binary that's needed?
-
**Is your feature request related to a problem? Please describe.**
I would like to start a discussion to add more options for SAST tools. As of now, 3 tools are checked in the SAST check - CodeQL, LG…
-
## Description
I'd like to run the docker container in a context that doesn't allow for the use of containers that run as root. The current container runs as root. Could the Dockerfile be setup to ru…
-
https://github.com/UKHomeOffice/repo-security-scanner
Checks for credentials, secrets, etc checked into repo, should be an easy add to CI
-
I've a workflow that builds ARM64 images then attempts to scan them with trivy, unfortunately because the host is AMD64 the images can't be found.
Is there a way to use docker buildx/etc to run tri…
-
Attempting to run:
```
- name: Scan image for vulnerabilities
uses: Azure/container-scan@v0.1
with:
image-name: ${{ secrets.DOCKERHUB_USERNAME }}/myApp:${{ steps.v…
-
- [ ] https://github.com/awslabs/git-secrets
- [ ] https://github.com/UKHomeOffice/repo-security-scanner
- [ ] https://github.com/auth0/repo-supervisor
- [ ] https://github.com/michenriksen/gitrob