✨ Ability to ignore CVEs

validator-labs / validator-plugin-kubescape

validator-plugin-kubescape provides configurable CVE alerting on top of Kubescape and creates ValidationResults for validator to consume.

https://validator-labs.github.io/docs

Apache License 2.0

4 stars 0 forks source link

✨ Ability to ignore CVEs #62

Open mattwelke opened 1 month ago

mattwelke commented 1 month ago

Summary

The ability to ignore detected CVEs was previously partially implemented. During a refactor, we found that ignoredCVEs in the rule's reconcile method was unused.

This feature can be fully implemented later. The partially implemented feature used this in the spec, which can be used for reference:

// Global Ignore CVEs
IgnoredCVERule []string `json:"ignoredCVERule,omitempty" yaml:"ignoredCVERule,omitempty"`

TylerGillson commented 1 month ago

@mattwelke IMO this issue is not actionable. Can you please define what you'd consider to be a full implementation? What is missing? What are the acceptance criteria?

TylerGillson commented 1 month ago

Ok - now I've found the context in https://github.com/validator-labs/validator-plugin-kubescape/pull/63

TylerGillson commented 1 month ago

@wcrum can you please address this?