project-copacetic
[REQ] Support for Wiz Scanning
What kind of request is this?
New feature
What is your request or suggestion?
Similar to Trivy, enterprises using Wiz if they can use CVE report from Wiz cli scanning can be used to for patching the container image using COPA. Saw some documentation on custom scanner plugin, will be looking into that.
Are you willing to submit PRs to contribute to this feature request?
- [X] Yes, I am willing to implement it.
I have use for this too. What type of CVE report are you thinking? An SBOM export from the Vulnerability -> Remediation section on a given container image?
Hi @vijaymateti, i want to contribute in this project under LFX mentorship program, i have some good experience in go with docker container runtime services with CI/CD integration. Can you guide me further how i should start for best outcomes.
@vijaymateti , would like to know if this issue is open to contribute and if its a part of lfx mentorship , shall we build propsals on it??
Hey @vijaymateti,
I'm Kaviraj, and I'm interested in working on this issue as part of the LFX Mentorship Program. I'm excited about implementing the support for Wiz Scanning and have started setting up the project locally to better understand the codebase. Happy to discuss further details on Slack or here.
Thanks!🥂
hey @vijaymateti ,integrating CVE reports from Wiz CLI scanning for patching container images using COPA sounds like a great addition. I saw the documentation on custom scanner plugins as well and will look into it further. This could potentially streamline the patching process and improve security in containerized environments. Looking forward to seeing how this develops!
Closing this one as copa provides this functionality with scanner plugins, and they are out of tree by design.
We would love for a wiz plugin! If you are interested in developing a scanner plugin for copa, please see scanner plugins docs including repo template to get started! Please feel free to add to docs when it's available.
