trivy-operator icon indicating copy to clipboard operation
trivy-operator copied to clipboard
verified publisher icon aquasecurity

Whitelist CVE + Image name/regex

Open jonny-wg2 opened this issue 3 years ago • 0 comments

Referencing https://github.com/aquasecurity/trivy-operator/discussions/489#discussioncomment-3566772

In short, it would be great to improve the ignore file to whitelist a CVE and say an image name or some type of regex. The problem with the current setup is that some systems we can't update and need to accept the risk but others we can do something about.

E.g. CVE-XYZ123 registry.company.com/reg/teamname/appname:tag-1234 CVE-XYZ123 registry.company.com/reg/teamname/appname*

jonny-wg2 avatar Sep 07 '22 14:09 jonny-wg2