My GitLab CI/CD pipeline is comprised entirely of containers that run on the Docker executor on my Runner. As such, I presume I’m meant to use Trivy’s second block of code here, where the Trivy image is fetched like all the other jobs in my pipeline do. However, when I do this, I get the ..
I have build a docker image successfully and tag it as testdock:latest ($CI_REGISTRY_IMAGE:latest) the $CI_REGISTRY variable is kept in GitLab project variable. I have another stage , to start scanning the testdock image by using Trivy: the process is just stuck without progress. I am guessing is that the image cannot be found or something ..
Trivy scanner documentation does not mention how to test if trivy server is up and running (a simple API call by a monitoring check would be fine in docs). https://aquasecurity.github.io/trivy $ curl http://trivy.local:8080 404 page not found Of course, I could monitor for 404 response, but I would no be sure if trivy is healthy. ..
I want to use trivy in my cimlany gitlb which doesn’t has internet connections to outside. I think that i can use trivy-db docker and integrate to gitlab vi. Both trivy and trivy-db was pushed to nexus repo. Here is the gitlab-ci.yml. I am not sure if i building it in correct way. build-trivy-db: image: ..
I am using Trivy for vulnerability scanning and I am having a bit of trouble about what commands to use. What exactly is the difference in Trivy’s scanning for trivy fs and trivy config? The Github repository sounds pretty much the same for both scanning commands: trivy fs: Simply specify a directory to scan. trivy ..
I am using trivy to do docker scanning and then saving the output into result.json file. Now I am trying to send the file to defectdojo to visualize it there, how can I do that? Source: Docker..
We are generating a container image based on mcr.microsoft.com/dotnet/core/aspnet:3.1-alpine The docker file includes a trivy security scan. Here is a docker file excerpt: # Build runtime image (Alpine) FROM mcr.microsoft.com/dotnet/core/aspnet:3.1-alpine # Upgrade the Alpine Image RUN apk update RUN apk upgrade RUN apk search -a|grep containerd|sort RUN apk add –upgrade containerd RUN apk add icu-libs ..
In the installation page for Trivy there is no mention of Windows. I have Docker for Windows installed so the Docker method looks promising but there are a couple of things I’m not sure of: What should I set the cache directory to? Will I need to "mount docker.sock"? The aim is to scan an ..
I am trying to do a security scan using trivy I am using this bash code to scan all ECR images for e in $(aws ecr describe-repositories | jq ‘. | . | .repositoryUri’) ; do (trivy i $e) ; done The PB is that i have this error failed to initialize options: invalid image: ..