Support for scanning changed files only (IaC mode)

aquasecurity / trivy-action

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

Apache License 2.0

807 stars 234 forks source link

Open dstrates opened 2 years ago

dstrates commented 2 years ago

Trivy-action does not offer the ability to scan changed files only (i.e. files introduced or modified in a pull request).

Instead it scans all files in a directory, or specified files only. This increases scanning time unnecessarily during the CI process.

alwatt commented 8 months ago

bump

simar7 commented 8 months ago

Trivy action only supports what Trivy has to offer. Currently Trivy does not offer this feature in the open source version.

hajdukda commented 5 months ago

Trivy action only supports what Trivy has to offer. Currently Trivy does not offer this feature in the open source version.

Come on its a simple for_each in bash..