ckotzbauer / vulnerability-operator

Scans SBOMs for vulnerabilities with Grype
MIT License
79 stars 10 forks source link

Support for OCI Registries #267

Open nlamirault opened 1 year ago

nlamirault commented 1 year ago

Hi, according to the documentation: This operator scans all SBOMs from a git-repository for vulnerabilities using Grype

The sbom-operator could generate a SBOM and store it into an OCI-Registry.

Do you think it is possible to support OCI Registry in vulnerability-operator

ckotzbauer commented 1 year ago

Hi @nlamirault, thanks for your feature-request. Yes, it is of course possible to add an OCI-Target to this project. Which information in which format do you wish to store?

nlamirault commented 1 year ago

i would like to do:

ckotzbauer commented 1 year ago

Okay, you want OCI-Support as source instead of as target. Yes, this might also be possible.

github-actions[bot] commented 1 year ago

This issue is stale because it has been open 90 days with no activity. Remove stale label with /remove-lifecycle stale or comment or this will be closed in 5 days.

nlamirault commented 1 year ago

any news on this feature @ckotzbauer ?

ckotzbauer commented 1 year ago

No, not yet. I did not forget this feature, but had no time to implement it yet.