Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(trivy): Configure insecure image registries #545

Closed
danielpacak opened this issue Apr 30, 2021 · 1 comment · Fixed by #548
Closed

feat(trivy): Configure insecure image registries #545

danielpacak opened this issue Apr 30, 2021 · 1 comment · Fixed by #548
Assignees
@xyoxo
Labels
🔦 plugin/trivy This issue is related to Trivy vulnerability scanner 🙏 help wanted Extra attention is needed 🚀 enhancement New feature or request 🧑‍🎓 good first issue Good for newcomers
Milestone
Release v0.10.2

Comments

@danielpacak
Copy link
Contributor

danielpacak commented Apr 30, 2021
edited

We do not recommend that but if someone is using the image registry with a self signed or invalid certificate, e.g. for POC, Trivy plugin will fail.
Trivy supports TRIVY_INSECURE env to skip certificate verification and pull the image after all. For a list of configured registries we should pass the env to a scan Job:

trivy.insecureRegistry.pocRegistry=poc.myregistry.harbor.com.pl
trivy.insecureRegistry.qaRegistry=qa.registry.aquasec.com

See #473
@danielpacak danielpacak changed the title Use Trivy plugin with insecure registry and / or custom certificate authority feat(trivy): Configure insecure image registries Apr 30, 2021
@danielpacak danielpacak added 🚀 enhancement New feature or request 🙏 help wanted Extra attention is needed 🧑‍🎓 good first issue Good for newcomers 🔦 plugin/trivy This issue is related to Trivy vulnerability scanner labels Apr 30, 2021
@xyoxo
Copy link
Contributor

xyoxo commented Apr 30, 2021

Please assign me

@xyoxo xyoxo mentioned this issue May 2, 2021
Merged
@danielpacak danielpacak added this to the Release v0.10.2 milestone May 9, 2021
danielpacak pushed a commit to xyoxo/starboard that referenced this issue May 9, 2021
@xyoxo @danielpacak
feat(trivy): Configure insecure image registries
ca9dd2b 
Resolves: aquasecurity#545
danielpacak pushed a commit that referenced this issue May 9, 2021
@xyoxo
feat(trivy): Configure insecure image registries (#548)
472fd92 
Resolves: #545
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@xyoxo xyoxo

Labels
🔦 plugin/trivy This issue is related to Trivy vulnerability scanner 🙏 help wanted Extra attention is needed 🚀 enhancement New feature or request 🧑‍🎓 good first issue Good for newcomers
Projects
None yet
Milestone
Release v0.10.2
Development

Successfully merging a pull request may close this issue.

feat(trivy): Configure insecure image registries xyoxo/starboard
2 participants
@danielpacak @xyoxo