Closed mook-as closed 3 months ago
Running trivy manually in the distribution gets:
# trivy image --format json busybox:latest
2024-05-28T18:16:02-04:00 INFO Need to update DB
2024-05-28T18:16:02-04:00 INFO Downloading DB... repository="ghcr.io/aquasecurity/trivy-db:2"
2024-05-28T18:18:13-04:00 FATAL Fatal error init error: DB error: failed to download vulnerability DB: database download error: OCI repository error: 1 error occurred:
* error getting credentials - err: exit status 28, out: ``
Running trivy manually in rdctl shell
succeeds.
We must be running trivy
from the wrong (network) namespace.
Actual Behavior
Attempting to scan any image, with either moby or containerd backend, produces an error:
There are no useful logs in
images.log
.Steps to Reproduce
Result
The scan never completes; a Windows dialog box pops up with an error message, but not enough details to determine why the scan failed.
Expected Behavior
Successful scan (possibly with vulnerabilities).
Additional Information
This doesn't fail in the same way on mac.
With extra logging hacked in, I see:
Rancher Desktop Version
1.13.1-521-g9abed793
Rancher Desktop K8s Version
1.29.5
Which container engine are you using?
containerd (nerdctl)
What operating system are you using?
Windows
Operating System / Build Version
Windows 11 Pro 23H2 (Build 22631.3593)
What CPU architecture are you using?
x64
Linux only: what package format did you use to install Rancher Desktop?
None
Windows User Only
No response