simar7
simar7
> This PR will be closed in favor of this #9062 ? What about the #8969 discussion where we announced the deprecation of `id` and `avd_id`? Yes updated the announcement....
> > using `Get:*` along with `Put:*` and all `resources:*` can lead to further issues > > Is there any research on the potential issues caused by such policies? I...
Fixed via https://github.com/aquasecurity/trivy-checks/pull/409
@nikpivkin what if we don't evaluate the disabled checks to begin with? Then there won't be anything to filter out right? Plus it will be less checks to evaluate rather...
> > what if we don't evaluate the disabled checks to begin with? > > This would require sufficient changes for such a request. Is the performance issue a cause...
hi @angelbarrera92 - thanks for the detailed feedback. I'm able to reproduce this as well. We're looking into it and will get back to you.
@afdesk can you take a look?
> Thank you for the quick response. > Is there an option to run `trivy-action` with the previous version? You can pin to the last release: ```shell - name: Scan...
> @simar7 @nikpivkin Does the misconfiguration scanner allow disabling checks by ID? When scanning image metadata, we want to pass AVD-DS-0011 as a disabled check. @knqyf263 currently we don't but...
It's certainly an interesting use case which I'd like to consider. It's more on the lines of disabling a check, but not completely ignoring it for all inputs. IOW, more...