trusted-certificate-issuer icon indicating copy to clipboard operation
trusted-certificate-issuer copied to clipboard

Published 20 hours ago verified publisher icon intel

Implement full pipeline

Open intel-k8s-bot opened this issue 2 years ago • 1 comments

  1. Building image
  2. Scanning image with Trivy during build
  3. Pushing built image to GitHub container registry
  4. Scanning image with CodeQL
  5. Pushing to DockerHub container registry

Notes: Trivy cannot access github container registry directly because of the private scope, so the scan is implemented inside the Makefile (ref.example https://github.com/intel/afxdp-plugins-for-kubernetes).

intel-k8s-bot avatar Jun 20 '23 09:06 intel-k8s-bot

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

github-advanced-security[bot] avatar Jun 20 '23 10:06 github-advanced-security[bot]