-
As a CSP, I want to continuously scan my container infrastructure for security weaknesses so that I can prevent security gaps in my Kubernetes clusters.
This issue focusses on the **Trivy Operator*…
-
Hello 👋
I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@ehtec) has found a potential issue, which I would be eager to share with you.
Could you add a `SECURITY…
-
Hi,
It would be great if Cervantes could import and parse data (= reports) from the most common vulnerability scanners like Nessus, GreenBone, etc.
Thank you and keep on with this very promising too…
-
Currently we use image tag and pass it to the active vulnerability scanner. This works for immutable tags, but has some drawbacks when a Kubernetes workload refers to a mutant image.
The possible s…
-
**Snyk:** https://snyk.io/test/npm/remarkable/1.7.4
In order to quiet the autolinker reports by Snyk, would need to update helper-markdown to remarkable 2.0.
Made a PR here: https://github.com/he…
-
Hi Guys,
I have reconfigured existing container registry as air gap environment and harbor version is 2.8.4 and trivy adaptor version 0.44, after reconfigure air gap environment I noticed trivy ada…
-
Please update the dependency to `debug >2.6.9` for both `nobel` and `bleno` to remedy warnings regarding security vulnerabilities.
turon updated
7 months ago
-
Hi, I have submitted two vulnerability reports privately with https://github.com/Sinaptik-AI/pandas-ai/security/advisories/new. And I also see the vulns have been patched in your new release. But I di…
0gur1 updated
2 months ago
-
### Package URl
pkg:maven/dnsjava/dnsjava@2.1.7
### CPE
null
### CVE
CVE-2024-25638
### ODC Integration
{"label"=>"Maven Plugin"}
### ODC Version
10.0.3
### Description
https://github.co…
-
As a CSP, I want to scan my Kubernetes infrastructure for security weaknesses so that I can find vulnerabilities.
This issue focusses on Trivy as a one-time execution tool in a Zuul pipeline.
T…