search

aquasecurity / trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
https://aquasecurity.github.io/trivy
Apache License 2.0
22.86k stars 2.25k forks source link

Vulnerability filtering with rego on helm chart #2248

Open ispirals opened 2 years ago

ispirals commented 2 years ago

Hello,

with the current helm chart is not possible to add a rego policy for filtering vulnerabilities (https://aquasecurity.github.io/trivy/v0.28.1/docs/vulnerability/examples/filter/), seems there is no volume mounted for this nor added as configuration to the configmap (https://github.com/aquasecurity/trivy/blob/v0.28.1/helm/trivy/templates/configmap.yaml).

I'm wondering if the reason is that this functionality is tagged as experimental and if you'd accept a PR adding support for this in the helm chart.

Thanks in advance!

github-actions[bot] commented 2 years ago

This issue is stale because it has been labeled with inactivity.

knqyf263 commented 2 years ago

Thanks. Sounds interesting.