First try probably to be customize.
use trivy action that generate a SARIF file which is a standard file to describe vulnerabilites.
upload sarif file to security code scan of github.
As we have multiple docker images the category option should partition the different file upload.
This first try is based upon latest tag that should change one day.
We could schedule this.
8
First try probably to be customize. use trivy action that generate a SARIF file which is a standard file to describe vulnerabilites. upload sarif file to security code scan of github.
As we have multiple docker images the category option should partition the different file upload.
This first try is based upon latest tag that should change one day. We could schedule this.