trivy icon indicating copy to clipboard operation
trivy copied to clipboard
Published 2 months ago verified publisher icon aquasecurity

Extra "db" string in the trivy cache path.

Open afdesk opened this issue 1 year ago • 6 comments

Description

Trivy creates new cache folders without read permissions, so any users can't access these data. https://github.com/aquasecurity/trivy/blob/dd9733e950d3127aa2ac90c45ec7e2b88a2b47ca/pkg/cache/fs.go#L24

We can modify this mode for some user.

Discussed in https://github.com/aquasecurity/trivy/discussions/7380

afdesk avatar Aug 27 '24 02:08 afdesk

Please see https://aquasecurity.github.io/trivy/latest/community/contribute/issue/

github-actions[bot] avatar Aug 27 '24 02:08 github-actions[bot]

I'll grant you permission.

knqyf263 avatar Aug 27 '24 02:08 knqyf263

@afdesk Done. You now have a write role.

knqyf263 avatar Aug 27 '24 02:08 knqyf263

@afdesk Done. You now have a write role.

great! thanks!

afdesk avatar Aug 27 '24 02:08 afdesk

@afdesk An issue must be actionable.

  • Discussion
    • People explain what is happening
      • e.g. SBOM scanning shows different results than image scanning.
  • Issue
    • It should describe what the problem is.
      • e.g. We lose case-sensitivity in PURL used in SBOM and it leads to the wrong results.

We need to summarize what actions are required based on the Discussion. e.g. https://github.com/aquasecurity/trivy/issues/7382

knqyf263 avatar Aug 27 '24 02:08 knqyf263

@afdesk An issue must be actionable. We need to summarize what actions are required based on the Discussion. e.g. #7382

the description is updated now.

afdesk avatar Aug 27 '24 03:08 afdesk