compliantkubernetes-apps icon indicating copy to clipboard operation
compliantkubernetes-apps copied to clipboard

Published 20 hours ago verified publisher icon elastisys

[3] Investigate and Fix Issue with Old Image Remaining in Trivy Panel

Open raviranjanelastisys opened this issue 6 months ago • 1 comments

Description

We have encountered an issues where the vulnerability report for an old images are not deleted when the image was updated in Grafana's Trivy panel. Despite updating to the new image, the old vulnerability report persisted, causing the dashboard to display outdated information.

I have manually removed the old vulnerability reports as a temporary fix, and the dashboard no longer shows the old image. However, we need to investigate the root cause to prevent this issue from occurring in the future.

  • Investigate the root cause of why the old vulnerability report was not deleted.
  • Implement a permanent fix to ensure old vulnerability reports are automatically deleted when images are updated.
  • Roll out the fix in future application releases.

Additional context

This issue can cause confusion and may lead to incorrect assessment of the current security posture due to outdated vulnerability reports.

Definition of done

A permanent fix will be rolled out based on the findings of the investigation.

raviranjanelastisys avatar Jul 30 '24 12:07 raviranjanelastisys