afdesk
afdesk
## Description Previously, Trivy encountered issues with resource scanning where Kubernetes would automatically upgrade deprecated (outdated) APIs during resource creation. As a result, the scanner was analyzing resources with updated...
**Description** Currently, kube-bench does not correctly determine the appropriate CIS version for RKE versions greater than 1.27. The selection logic is limited to platform.Version: 1.23-1.27: https://github.com/aquasecurity/kube-bench/blob/a38a3c5bbcd83a766e923fccf0ed3605f91885be/cmd/util.go#L522-L538 while newer versions default...
> Closing this as the new config paths have already been updated since v0.9.0 (https://github.com/aquasecurity/kube-bench/pull/1637). I was using and older version of kube-bench following these installation instructions https://github.com/aquasecurity/kube-bench/blob/main/docs/installation.md#download-and-install-binaries (v0.6.2) _Originally...
[CIS Kubernetes Benchmark v1.12](https://workbench.cisecurity.org/benchmarks/22107) (targets k8s v1.32 - v1.34) has been released in CIS Workbench. kube-bench should support it too. ### Discussed in https://github.com/aquasecurity/kube-bench/discussions/1963
> We no longer have the issue, after adding `trivy.registry.mirror.index.docker.io: docker-io.example.com` to the `trivy-operator-trivy-config` ConfigMap. At this point this is more of a documentation issue, to add this information in...
## Description This PR adds next metadata in UBI9 based image: * a license file locates in /licenses/LICENSE * added the next labels on the image metadata - Labels.name: "ubi9-minimal"...
## Description This PR refactors variable names to eliminate shadowing, improve clarity, and reduce maintenance risk ## Checklist - [ ] I've read the [guidelines for contributing](https://github.com/aquasecurity/trivy-operator/blob/main/CONTRIBUTING.md) to this repository....
## Description This PR ensures that ClusterComplianceReport generation always invokes the manager even when alternate storage is enabled. It allows to re-use the report for other cases. ## Related issues...
## Description This PR bumps up action/setup-go to v6, and enables `check-latest` to ensure we always use the latest patch version. It should fix vulns CVE-2025-61727 and CVE-2025-61729 in the...
## Description This PR updates Trivy to version 0.68.1. ## Checklist - [ ] I've read the [guidelines for contributing](https://github.com/aquasecurity/trivy-operator/blob/main/CONTRIBUTING.md) to this repository. - [ ] I've added tests that...