Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Trivy GitHub action #12

Merged
merged 23 commits into from
Sep 29, 2023
Merged

Trivy GitHub action #12

merged 23 commits into from
Sep 29, 2023

Conversation

foodprocessor
Copy link
Contributor

Trivy vulnerability scanning now working.
This does not do license scanning (so far as I know), and I'm not sure trivy-action has that capability.

@jfantinhardesty
Copy link
Contributor

Given that it doesn't support secret scanning, do you think we should avoid using the trivy action and instead something more like we do in the Azure pipeline for trivy?

@foodprocessor
Rename action
57cd9fd
@foodprocessor
Run action on this branch to test.
5c12a79 
Update checkout.
@foodprocessor
Exclude low severity issues.
da75616
@foodprocessor
Don't build for a fs scan.
2f2ee41
@foodprocessor
Fix cloudfuse not found error.
c706cf8
@foodprocessor
Remove codeql step.
af271ad
@foodprocessor
Use exit code to signal failure.
ae45aa3 
Print issues only when issues are found.
@foodprocessor
No need to download dependencies.
b0476e9
@foodprocessor
Add fake vulnerability to test failure
4d5d1f3
@foodprocessor
Don't mask errors
24d4774
@foodprocessor
Verify folder
f4d1921
@foodprocessor
Try to get more ouput from Trivy
df0c8d9
@foodprocessor
Print report and force failure
f74e7cf
@foodprocessor
remove extra options
bde2de6
@foodprocessor
Use table output
83833c6
@foodprocessor
Remove fake vulnerability.
3eb3b39
@foodprocessor
Remove extra step
6a87c22
@foodprocessor
Remove branch debug scanning.
cb40672
@foodprocessor
Run Trivy manually (without trivy-action).
72702e7
@foodprocessor
Re-enable run on dev branch.
2ab7072
@foodprocessor
Add fake vulnerability for testing.
f6aae64
@foodprocessor
Remove fake vulnerability.
c205d16
@foodprocessor foodprocessor merged commit 735d249 into main Sep 29, 2023
5 of 7 checks passed
@foodprocessor foodprocessor deleted the trivy-github-action branch September 29, 2023 22:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Ferelith-maker Ferelith-maker Ferelith-maker approved these changes

@jfantinhardesty jfantinhardesty jfantinhardesty approved these changes

@Dabnsky Dabnsky Awaiting requested review from Dabnsky Dabnsky is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@foodprocessor @jfantinhardesty @Ferelith-maker