simar7
simar7
Currently we detect by content but later on filter by name. We shouldn't double filter if the content is already valid. ### Discussed in https://github.com/aquasecurity/trivy/discussions/7363 Originally posted by **Molaire** August...
It's reasonable to drop support for Exceptions since: 1. No other scanner uses it today. So the concept of Exceptions only exists in misconfiguration scanning. I believe the original concept...
TODO: - Trivy should support accessing individual blocks in the case of `for_each` or `count` variables. This would allow to target specific resources such as described in the example below....
### Discussed in https://github.com/aquasecurity/trivy/discussions/7135 Originally posted by **chanster** July 9, 2024 ### IDs AVD-AZU-0051 ### Description The title of the check is **An outbound network security rule allows traffic to...
### Discussed in https://github.com/aquasecurity/trivy/discussions/7089 Originally posted by **mdirkse** July 3, 2024 ### Description If an ignore file is specified using the `--ignorefile` flag and that file doesn't exist Trivy does...
As discussed [here](https://github.com/aquasecurity/trivy/pull/7690#discussion_r1805663259) we should improve the testing for the k8s scanner as it is short on coverage. As part of this we could also look into refactoring the scanner...
This would be especially useful when scanning Terraform Plan JSON, since we are converting it to HCL and have no way to track the location of the error. We can...
## Description Show misconfig ID in output ### Before ```shell my-file () ========== Tests: 1 (SUCCESSES: 0, FAILURES: 1, EXCEPTIONS: 0) Failures: 1 (LOW: 0, MEDIUM: 0, HIGH: 1, CRITICAL:...
## Description Adds public ECR registry as a fallback for both vuln-db and java-db. ## Related PRs - [x] https://github.com/aquasecurity/trivy/pull/7605/ ## Checklist - [x] I've read the [guidelines for contributing](https://aquasecurity.github.io/trivy/latest/community/contribute/pr/)...
## Description Include a verbose message if no results found ## Related discussion - https://github.com/aquasecurity/trivy/discussions/4277 ## Checklist - [ ] I've read the [guidelines for contributing](https://aquasecurity.github.io/trivy/latest/community/contribute/pr/) to this repository. -...