trivy-operator icon indicating copy to clipboard operation
trivy-operator copied to clipboard
verified publisher icon aquasecurity

Prevent deployments if critical finding

Open jonny-wg2 opened this issue 3 years ago • 3 comments

Hi I'm wondering if there is a way to prevent deployments if there is a critical vulnerability identified in pod xyz.

jonny-wg2 avatar Sep 05 '22 17:09 jonny-wg2

its can be done with admission controller , it on our plans to add support to for it in trivy-operator

chen-keinan avatar Sep 06 '22 06:09 chen-keinan

@chen-keinan Is there any timeline for adding the admission control feature?

For now, the most viable option for running Trivy in an admission controller seems to be devopstales/trivy-operator. I hope similar functionality will be provided by Trivy Operator soon.

weibeld avatar Oct 14 '22 07:10 weibeld

@weibeld no specific timeline , we know that it something we want to have along with other things , we are happy to get contribution from the community for it if not, we will pick it up.

chen-keinan avatar Oct 14 '22 14:10 chen-keinan