6 Pull requests merged by 1 person

• build(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1

  #2276 merged Dec 1, 2024

• build(deps): bump engineerd/setup-kind from 0.5.0 to 0.6.2

  #2305 merged Nov 30, 2024

• build(deps): bump actions/setup-python from 5.1.1 to 5.3.0

  #2298 merged Nov 29, 2024

• build(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0

  #2277 merged Nov 28, 2024

• build(deps): bump github.com/onsi/ginkgo/v2 from 2.20.0 to 2.22.0

  #2328 merged Nov 28, 2024

• build(deps): bump aquaproj/aqua-installer from 3.0.2 to 3.1.0

  #2326 merged Nov 28, 2024

7 Pull requests opened by 2 people

• build(deps): bump codecov/codecov-action from 4 to 5

  #2337 opened Dec 2, 2024

• build(deps): bump k8s.io/cli-runtime from 0.31.2 to 0.31.3

  #2338 opened Dec 2, 2024

• build(deps): bump golang.org/x/text from 0.19.0 to 0.20.0

  #2339 opened Dec 2, 2024

• build(deps): bump golang.org/x/net from 0.30.0 to 0.31.0

  #2340 opened Dec 2, 2024

• build(deps): bump sigs.k8s.io/controller-runtime from 0.19.2 to 0.19.3

  #2341 opened Dec 2, 2024

• build(deps): bump github.com/aquasecurity/trivy-checks from 1.2.2 to 1.4.0

  #2342 opened Dec 2, 2024

• fix: custom volume mounts not applied to containers and init containers

  #2347 opened Dec 4, 2024

3 Issues closed by 2 people

• Trivy-operator not able to scan elasticsearch image.

  #2294 closed Dec 5, 2024

• Trivy Operator crashes large clusters

  #2335 closed Dec 3, 2024

• Failed to pull image 0.23

  #2336 closed Dec 2, 2024

5 Issues opened by 5 people

• hostaliases support for helm chart

  #2349 opened Dec 4, 2024

• Custom volume mounts not applied to containers and init containers

  #2348 opened Dec 4, 2024

• Issue with Installing Trivy-Operator on GKE Autopilot Cluster

  #2346 opened Dec 4, 2024

• the custom configuration audit policies is not working properly

  #2345 opened Dec 4, 2024

• scan-vulnerabilityreports being created and are stuck initializing

  #2343 opened Dec 3, 2024

20 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• fix: return proper image digest

  #2310 commented on Dec 3, 2024 • 2 new comments

• feat: Provide credentials in imagePullSecret without global access

  #2161 commented on Dec 3, 2024 • 0 new comments

• trivyOperator.scanJobCustomVolumesMount and scanJobCustomVolumes helm values don't work as expected

  #2263 commented on Dec 5, 2024 • 0 new comments

• Support for more report formats in the VulnerabilityReport CRD (such as cyclonedx)

  #2275 commented on Dec 5, 2024 • 0 new comments

• Allow to try several mirrors for a given registry

  #2274 commented on Dec 5, 2024 • 0 new comments

• Vulnerability scanner unable to scan arm64-only images

  #1469 commented on Dec 5, 2024 • 0 new comments

• policiesBundle: tls: failed to verify certificate: x509: certificate signed by unknown authority

  #2295 commented on Dec 4, 2024 • 0 new comments

• CIS Benchmark k8s-cis-1.23 is empty

  #2285 commented on Dec 4, 2024 • 0 new comments

• needlessly using follow option when retrieving logs of completed job

  #2264 commented on Dec 4, 2024 • 0 new comments

• Missing config TRIVY_JAVA_DB_REPOSITORY in trivy.yaml chart template

  #2271 commented on Dec 4, 2024 • 0 new comments

• Vulnerability Report's report.artifact.digest field is the artifact's image_id not digest

  #2259 commented on Dec 4, 2024 • 0 new comments

• Allow InitContainer to pull vulnerability-db from private registry

  #2221 commented on Dec 4, 2024 • 0 new comments

• Trivy operator flag insecure not working - failed to verify certificate: x509

  #2212 commented on Dec 4, 2024 • 0 new comments

• vulnerabilityreports in few namespaces are not getting created

  #2202 commented on Dec 4, 2024 • 0 new comments

• Policies Bundle not working with internal ecr repo: getting error "failed to load policies","error":"failed to download policies: failed to download built-in policies: download error: OCI artifact must be a single layer

  #2220 commented on Dec 4, 2024 • 0 new comments

• Configure trivy-operator to use single ImagePullSecret from operator namespace without enabling global secret access

  #2158 commented on Dec 4, 2024 • 0 new comments

• failed to wait for configauditreport caches to sync

  #2283 commented on Dec 3, 2024 • 0 new comments

• Scan for vulnerabilities on nodes

  #1471 commented on Dec 2, 2024 • 0 new comments

• etcdserver: request is too large

  #441 commented on Nov 28, 2024 • 0 new comments

• Native PolicyReport support

  #2003 commented on Nov 28, 2024 • 0 new comments