simar7
simar7
## Description Deprecates the `aws` from Trivy. Users can now install the `aws` plugin instead. More details can be found in the deprecation notice [here](https://github.com/aquasecurity/trivy/discussions/6818) ## Related PRs - [...
## Description This PR updates the Trivy workflows to the latest recommended workflow examples. Also deprecates the `tfsec` workflow as we've integrated its functionality into Trivy. Signed-off-by: Simar ## Pre-requisites...
Today we have the `--checks-bundle-repository` flag that can be use to allow Trivy to download a bundle from a specified registry URL. However there can be instances where a bundle...
Today when a PR is submitted in the checks repo, we have some basic testing that takes place as described in [this](https://github.com/aquasecurity/trivy-checks/blob/main/.github/workflows/test-bundle.yml) workload. However, it offers no integration testing with...
Today trivy-checks bundles are released manually, usually once a month in time for the next trivy release. We could automate this process by defining the trigger for a bundle release...
### Discussed in https://github.com/aquasecurity/trivy/discussions/7025 Originally posted by **rkm** June 26, 2024 ### Description Trivy does not produce any error or warning when `--config` specifies a file that does not exist....
Today we don't ignore duplicate checks if found (e.g. A check could exist as a Go and Rego implementation during the transition to move all checks to Rego). In such...
As part of using Rego to define checks within Trivy, we should transition the remaining Go based checks into Rego as well. https://github.com/aquasecurity/trivy-checks/tree/main/checks
Today the release process for Trivy Action is manual. This involves creating a new PR, alongside updating any tests for every Trivy release. We can improve on this in the...
### Discussed in https://github.com/aquasecurity/trivy/discussions/7320 Originally posted by **candrews** August 8, 2024 ### IDs ds016 ### Description Trivy misconfiguration scan incorrectly reports duplicate CMD instructions for some docker images. Trivy seems...