Add Trivy to KIM pipeline

kyma-project / infrastructure-manager

Apache License 2.0

0 stars 10 forks source link

Add Trivy to KIM pipeline #194

Closed tobiscr closed 1 month ago

tobiscr commented 6 months ago

Description

As we made good experiences with Trivy in our pipelines, lets also add it to KIM's pipeline to get notified in-time when new security-vulnerabilities are popping up.

AC:

[x] Trivy should be trigger within each PR build

Reason

Increase detection of security-vulnerability before SAP scanners are detecting it.

tobiscr commented 1 month ago

Feature already implemented in KIM GH worklfows