[DOC] filtering vulns with trivy

project-copacetic / copacetic

🧵 CLI tool for directly patching container images!

https://project-copacetic.github.io/copacetic/

Apache License 2.0

1.02k stars 69 forks source link

[DOC] filtering vulns with trivy #214

Closed sozercan closed 1 year ago

sozercan commented 1 year ago

What kind of documentation improvement is needed?

None

What is the change that is needed?

document how to filter vulns using rego policy or ignore file https://aquasecurity.github.io/trivy/v0.43/docs/configuration/filtering/

example from CI: https://github.com/project-copacetic/copacetic/blob/3e22d49509ef9ef16aeedccfcc050f4ad627ed92/.github/workflows/build.yml#L112-L126

anubhav06 commented 1 year ago

Question: This needs to be added to the website docs or the github docs?

anubhav06 commented 1 year ago

I've come up with this documentation: https://docs.google.com/document/d/1ZkV2fxmYY2z9EP7FJtNuAS6AF1Kkyg6QfFYJGd5gUng/edit?usp=sharing Let me know what do you think about it.

sozercan commented 1 year ago

Question: This needs to be added to the website docs or the github docs?

Website docs, all user-facing docs should be there.

We should assess docs in github if they need to be moved to website (opened #249).

sozercan commented 1 year ago

I've come up with this documentation: docs.google.com/document/d/1ZkV2fxmYY2z9EP7FJtNuAS6AF1Kkyg6QfFYJGd5gUng/edit?usp=sharing Let me know what do you think about it.

Thanks! Please feel to open a PR for this.