search

aquasecurity / trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
https://aquasecurity.github.io/trivy
Apache License 2.0
22.1k stars 2.18k forks source link

fix(plugin): respect `--insecure` #7021

Closed knqyf263 closed 1 week ago

knqyf263 commented 1 week ago

Description

--insecure is not respected for plugin subcommands now.

$ trivy plugin update --insecure
2024-06-25T14:14:13Z    INFO    [plugin] Updating the plugin index...   url="https://aquasecurity.github.io/trivy-plugin-index/v1/index.yaml"
2024-06-25T14:14:13Z    FATAL   Fatal error     plugin update error: unable to download the plugin index: failed to download: Get "https://aquasecurity.github.io/trivy-plugin-index/v1/index.yaml": proxyconnect tcp: tls: failed to verify certificate: x509: certificate signed by unknown authority