As a developer,
So that I can troubleshoot and preempt security vulnerabilities found by the trivy nightly action,
I want it to be easy to run trivy locally
Acceptance Criteria
[x] There is a documented, easy to use process and tool to troubleshoot vulnerabilities.
Definition of Done
[x] Acceptance criteria met
[x] Usability tests passed - this user story should be easy to use by real users
[x] Code refactored for clarity - code must be clean, self-documenting code
[x] Dependency Rule followed - higher-level code should not depend directly on lower-level code
[x] Source code merged
[x] Unit test coverage of our code > 90%
[x] Security reviewed and reported - includes vulnerability and compliance scanning
[x] Code quality checks passed
[x] Build process updated if needed
[x] API documentation updated if needed
Additional Information
It took a minute to troubleshoot the CVE-2022-25881 found by the trivy workflow.
Describe the User Story
As a developer, So that I can troubleshoot and preempt security vulnerabilities found by the
trivynightly action, I want it to be easy to runtrivylocallyAcceptance Criteria
Definition of Done
Additional Information
It took a minute to troubleshoot the CVE-2022-25881 found by the
trivyworkflow.Related Feature Request
No response