simar7
simar7
> If the user performed a scan without the `include-non-failures` flag, then a conversion with the `include-non-failures` flag enabled will not add the passed results to the report, as they...
> > * trivy convert --scanners misconfig --format template --template "@contrib/junit.tpl" --output "report.junit.xml" report.json > > I didn't notice that `--include-non-failures` is missing here. Then I think we can require...
> [@simar7](https://github.com/simar7) Some allowed sysctls have a minimum Kubernetes version. Should the check be improved to take into account the k8s version from `data.k8s.version`? Yeah sounds good to me.
hi - the closing of issues is handled by the GitHub Code Scanning service. If Trivy runs again and the reported CVEs are patched, the vulnerabilities should be removed from...
> @simar7 @itaysk Should the id now have the prefix `AVD`? Actually, good question. I thought about it and there's a way to not have this, we'll have to add...
> In that case, should we first discuss and decide on the new format of id checks and make all the changes in trivy-checks and then update trivy-checks in trivy...
> @simar7 @itaysk Should we move this PR to the next release? Yes, I've already updated the discussion to do so https://github.com/aquasecurity/trivy/discussions/8969
> In that case, should we first discuss and decide on the new format of id checks and make all the changes in trivy-checks and then update trivy-checks in trivy...
Closing as https://github.com/aquasecurity/trivy/pull/9576 was merged.