-
Notifications
You must be signed in to change notification settings - Fork 50
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
trivy scanner CI integration support #166
Comments
I am looking at this, but would you have any interest in migrating from circleci to github actions? Or would you prefer it be implemented on the existing circleci configuration? I have no direct experience with either so I thought it would be a good opportunity for me to learn github actions. I am happy either way whatever you choose. |
https://blog.aquasec.com/devsecops-with-trivy-github-actions or perhaps even better, would be this action? I would also look at adding hadolint action |
@wwuck Thank you for your interest! Yes, I prefer migrating to GitHub Action. However, if this migration seems overwhelmed for you, considering your experience, would it be better to add GitHub Action for this trivy scan? In precise, we don't need to consolidate CI this time as the first step. Instead, you can focus on adding this feature alone. Either approach is fine for me 😸 |
Thanks! I will take a look at GitHub Actions and see how I go with it. |
ref. #163 (comment)
The text was updated successfully, but these errors were encountered: