-
### Current Behavior
Uploading sboms generated with trivy 0.53 for SLES 12.5 and 15.x can't be scanned by the trivy analyzer, because the OS is not detected by trivy, trivy 0.53 server log:
```
INF…
-
We are building an image-scanner K8s-operator, and all our clusters runs Openshift. Inspired by [trivy-operator](https://github.com/aquasecurity/trivy-operator), which we cannot use for various reason…
-
In our project we are doing many sarif scans: trivy + hadolint for every container we are going to build.
All sarif files ending up in CodeAnalysisLogs with their respective name e.g. hadolint-{conta…
-
**What steps did you take and what happened:**
Im using trivy operator behind a proxy that has its own certificate and needs to run with the insecure flag in order to download the policy bundles igno…
-
**What happened**:
trivy scanning reports 3(1 HIGH and 2 MEDIUM) CVEs in 2.13.0 image.
```
┌─────────┬────────────────┬──────────┬────────┬───────────────────┬────────────────┬───────────────…
-
### zot version
v2.1.0
### Describe the bug
I log into zot and it logs me out about 10 seconds later.
### To reproduce
config.json
{
"distSpecVersion":"1.0.1",
"storage":{
"dedupe": t…
-
## Summary
Checking the result of Trivy scan, there is a CRITICAL CVE and a dependency should be updated.
## Steps to reproduce
When running a trivy scan on latest concourse image, it reporte…
-
## 🐞 Bug report
I deployed SCB Auto Discovery to kubernetes, annotated existing namespace with some pods in it. Then killed nginx pod and Auto Discovery service failed to fetch `Scan` and process ano…
-
I'm attempting to scan a image on a GHES 3.12 with a action runner in a docker container using @myoung34 container https://github.com/myoung34/docker-github-actions-runner.
When specifying sarif fo…
-
Hello,
When running `trivy-action` scans on ECS-Optimized Amazon Machine Images (AMIs) in a GitHub Actions workflow, I've found Trivy fails to detect the operating system and reports a 'filesystem …