Support Fedora #121
Comments
urbaniak
added
the
kind/deprecation
|
@urbaniak Thank you for your request. Although I want to support Fedora, I don't know whether Fedora has the security advisory. Trivy needs the security advisory by the distribution to detect vulnerabilities. Let me know if you know anything. |
|
Hello @knqyf263 , |
|
@Colundrum Great! This is valuable information. How many users are using fedora on container? |
|
@knqyf263 statistics for fedora official docker images are here : https://hub.docker.com/v2/repositories/library/fedora/ |
|
@Colundrum Thank you for the information. It's large number. It might be better to support Fedora. |
knqyf263
added
kind/feature
|
@knqyf263 I'm interested in having fedora support as well. I've started debugging trivy CLI in order to have an idea about the architecture. Can you please provide some high level guidance on how to approach this contributions? Thanks |
|
First of all, we have to parse Fedora security advisories and they need to be committed to vuln-list. The update script must be in vuln-list-update. But I've not found structured advisories like JSON or YAML yet. Looks like RSS is missing some information such as OS versions. We have to look for it at first. |
|
@mfrancisc Could you open a PR in vuln-list-update? We already have a PR we were working on, but you can open a new one. |
knqyf263
added
the
help wanted
|
@knqyf263 I can have a look and see if I can find a way to integrate the missing information (OS versions and others if needed). |
* fix: Due read after write consistency in S3 missingLayers called the actual object that created cache 403 response This change creating index file for each object so missingLayers will not hit object that not exist. * fix comments error description Co-authored-by: oranmoshai <[email protected]>
* fix: Due read after write consistency in S3 missingLayers called the actual object that created cache 403 response This change creating index file for each object so missingLayers will not hit object that not exist. * fix comments error description Co-authored-by: oranmoshai <[email protected]>
feat: add unit tests for AWS EFS rules
|
whats the status here? seems like fedora is not supported but there already was once a prepared pr for that? since i'm new to this topic, is this about adding fedora to the "scanable base images" or to have installable rpms for fedora? :D |
|
Seems like #1616 has been closed for inactivity. Any other news so far? |
|
Any update so far? Has trivy started supporting fedora images? |
1 similar comment
|
Any update so far? Has trivy started supporting fedora images? |
|
I am very interested in using it with Fedora 38 as well |
|
I also interested in using it with all Fedora versions |
Any chances getting support for Fedora?
The text was updated successfully, but these errors were encountered: