trivy-operator
trivy-operator copied to clipboard
aquasecurity
Kubernetes-native security toolkit
In some clusters the vulnerability report produce by 'trivy-operator' is hitting the max request limit of etcd. It is suggested to use [EndpointSlice](https://kubernetes.io/blog/2020/09/02/scaling-kubernetes-networking-with-endpointslices/) , sharding, and split the report to...
in some clusters the vulnerability report produce by 'trivy-operator' is hitting the `max request limit of etcd` it is suggested to reduce the amount of fields stored for each vulnerability...
Since jobs/cronjobs represent transient workloads it would be possible to skip/exclude them as it is already possible with complete namespaces. So any configuration option would help here to stop frequent...
**What steps did you take and what happened:** I took the last version of trivy-operator and started it with client server mode, which worked out for the most pods, but...
In the vulnerability report there's no separator for found vulnerabilities. By adding a comment sign or whatever between each vuln, would make the report a bit easier to read. Currently:...
Would be nice if you add features[ trivy-adapter](https://github.com/kubernetes-sigs/wg-policy-prototypes/tree/master/policy-report/trivy-adapter) into operator, create `wgpolicyk8s.io` as your standart CRDs
## Description I changed the docs similar to how we changed the Trivy docs. One thing I am not happy with is the installation section, maybe we can move some...
In a K8s system, when the controller submits a scanner job, the credentials for composing "imagePullSecret" comes from the credential of the target container. But if the target container is...
**What steps did you take and what happened:** scanner started ``` Defaulted container "kube-scheduler" out of: kube-scheduler, kube-scheduler-cert-syncer, kube-scheduler-recovery-controller, wait-for-host-port, d7a8c404-d3a7-4f3b-b746-8a99b515857f (init) 2022-08-03T14:36:09.852Z FATAL image scan error: scan error: unable...
What do you think if we introduce the option to automatically create trivy server when using client/server mode? So if the user doesn't have a server or doesn't know how...