trivy-enforcer

EXPERIMENTAL

Kubernetes Operator for Image Assurance

It works as

Admission Controller
- protecting unsafe images from being deployed
Custom Controller
- watching ImageVulnerability CRD and scanning the image in the custom resource automatically

Setup

$ kubectl apply -f manifests/opa.yaml
$ kubectl apply -f manifests/cert-manager.yaml
$ export IMG=your_account/controller:latest
$ make docker-push
$ make deploy

Development

$ kubectl apply -f manifests/opa.yaml
$ kubectl apply -f manifests/cert-manager.yaml
$ skaffold dev

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
api/v1alpha1		api/v1alpha1
bin		bin
config		config
controllers		controllers
example		example
hack		hack
harbor		harbor
image		image
manifests		manifests
opa		opa
trivy		trivy
webhook		webhook
.dockerignore		.dockerignore
.gitignore		.gitignore
Dockerfile		Dockerfile
LICENSE		LICENSE
Makefile		Makefile
PROJECT		PROJECT
README.md		README.md
go.mod		go.mod
go.sum		go.sum
main.go		main.go
skaffold.yaml		skaffold.yaml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

trivy-enforcer

Setup

Development

About

Releases

Packages

Languages

License

aquasecurity/trivy-enforcer

Folders and files

Latest commit

History

Repository files navigation

trivy-enforcer

Setup

Development

About

Resources

License

Code of conduct

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages