Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Investigate using trivy to scan containers

Description

Investigate Trivy and see how we can use it to scan our containers

Acceptance / Success Criteria

None

Lucidchart Diagrams

Activity

Show:

Morteza January 23, 2023 at 7:03 PM

Morteza October 7, 2022 at 3:00 PM

What remains to be tested is ability to filter the findings

Morteza September 27, 2022 at 4:38 PM

It think running it during coverage runs might be better. 

Benjamin Reed September 27, 2022 at 3:36 PM

Maybe we should run it as part of the coverage runs?

Morteza September 26, 2022 at 8:22 PM
Edited

I updated `build-image-single-arch` job to install and run Trivy.

The impact on the jobs are as follow:

  • `minion-image-single-arch-linux-amd64` execution time increased to 4 minutes and 45 seconds [From 2 minutes and 10 seconds]

  • `sentinel-image-single-arch-linux-amd64` execution time increased to 4 minutes and 4 seconds [From 2 minutes and 11 seconds]

  • `horizon-image-single-arch-linux-amd64` execution time increased to 6 minutes and 58 seconds [From 3 minutes and 59 seconds]

 

Fixed

Details

Assignee

Reporter

Story Points

Fix versions

Priority

Parent

PagerDuty

Created September 26, 2022 at 8:14 PM
Updated January 24, 2023 at 4:38 PM
Resolved January 24, 2023 at 4:38 PM

Flag notifications