goss icon indicating copy to clipboard operation
goss copied to clipboard
verified publisher icon goss-org

ci: add schedule for trivy scans

Open dklimpel opened this issue 1 year ago • 2 comments

Checklist
  • [x] make test-all (UNIX) passes. CI will also test this
  • [x] unit and/or integration tests are included (if applicable)
  • [ ] documentation is changed or added (if applicable)

Description of change

A schedule task to scan latest container image (with latest tagged binary).

At the moment there is no latest image and this PR has to wait for next tagged version.

dklimpel avatar Jul 04 '24 18:07 dklimpel

I'm thinking of cutting a release this weekend to address the open CVE, also thinking of getting one last release in before the Travis cutover.. in case we run into unexpected turbulence.

I assume this PR will have to wait until after the release?

aelsabbahy avatar Jul 13 '24 17:07 aelsabbahy

I assume this PR will have to wait until after the release?

Yes.

also thinking of getting one last release in before the Travis cutover.. in case we run into unexpected turbulence

Sounds good.

dklimpel avatar Jul 13 '24 17:07 dklimpel

There is a version tagged with latest to scan per schedule, now.

dklimpel avatar Nov 05 '24 22:11 dklimpel

Awesome, thanks!

aelsabbahy avatar Nov 05 '24 22:11 aelsabbahy