search

mercedes-benz / sechub

SecHub provides a central API to test software with different security tools.
https://mercedes-benz.github.io/sechub/
MIT License
270 stars 65 forks source link

Provide container security scan - #271

Open de-jcup opened 4 years ago

de-jcup commented 4 years ago

It would be nice to have possibility to do container scans by sechub

{
  "apiVersion": "1.0",

  "server"   : "https://sechub.example.org",
  "user"     : "alice",

  "project"  : "gamechanger",

  "containerScan"  : {
       "images": ["testme/bad-dockerfile"]
  }
}

First adapter implementation could be done for Clair (OSS).

Albert Tregnaghi albert.tregnaghi@daimler.com, Daimler TSS GmbH, imprint

de-jcup commented 4 years ago

Hmm.. for podman and docker this would be a correct and nice configuration setup, but what about other container technologies- is the "images" path still valid in other cases. Maybe we need something like a "type" field and default is "docker/podman" ?