copacetic icon indicating copy to clipboard operation
copacetic copied to clipboard

[REQ] Support for Wiz Scanning

Open vijaymateti opened this issue 1 year ago • 1 comments

What kind of request is this?

New feature

What is your request or suggestion?

Similar to Trivy, enterprises using Wiz if they can use CVE report from Wiz cli scanning can be used to for patching the container image using COPA. Saw some documentation on custom scanner plugin, will be looking into that.

Are you willing to submit PRs to contribute to this feature request?

  • [X] Yes, I am willing to implement it.

vijaymateti avatar Dec 10 '24 05:12 vijaymateti

I have use for this too. What type of CVE report are you thinking? An SBOM export from the Vulnerability -> Remediation section on a given container image?

michael-bey avatar Jan 17 '25 03:01 michael-bey

Hi @vijaymateti, i want to contribute in this project under LFX mentorship program, i have some good experience in go with docker container runtime services with CI/CD integration. Can you guide me further how i should start for best outcomes.

codesage01 avatar May 13 '25 06:05 codesage01

@vijaymateti , would like to know if this issue is open to contribute and if its a part of lfx mentorship , shall we build propsals on it??

RONAK-AI647 avatar May 20 '25 07:05 RONAK-AI647

Hey @vijaymateti,

I'm Kaviraj, and I'm interested in working on this issue as part of the LFX Mentorship Program. I'm excited about implementing the support for Wiz Scanning and have started setting up the project locally to better understand the codebase. Happy to discuss further details on Slack or here.

Thanks!🥂

flushthemoney avatar May 20 '25 07:05 flushthemoney

hey @vijaymateti ,integrating CVE reports from Wiz CLI scanning for patching container images using COPA sounds like a great addition. I saw the documentation on custom scanner plugins as well and will look into it further. This could potentially streamline the patching process and improve security in containerized environments. Looking forward to seeing how this develops!

kcl17 avatar May 24 '25 08:05 kcl17

Closing this one as copa provides this functionality with scanner plugins, and they are out of tree by design.

We would love for a wiz plugin! If you are interested in developing a scanner plugin for copa, please see scanner plugins docs including repo template to get started! Please feel free to add to docs when it's available.

sozercan avatar Jul 02 '25 23:07 sozercan