Skip to content

Set up known-vulnerability scanning for container images #184

New issue
New issue
Open
Open
Set up known-vulnerability scanning for container images#184
Labels
help wantedExtra attention is neededsecurityRelates to security
@ericcornelissen

Description

@ericcornelissen
ericcornelissen
opened on Jan 11, 2024

Relates to #136

Summary

Create a default audit command to audit container images (i.e. Containerfile.dev) so as to stay on secure base images.

Suggestions, tips, thoughts are welcome.

Goals

The solution:

  • (must) be runnable by anyone.
  • (must) allow for ignoring specific vulnerabilities manually.
  • (ideally) allows for ignoring vulnerabilities without fixes.

Metadata

Metadata

Assignees

No one assigned

    Labels

    help wantedExtra attention is neededsecurityRelates to security

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions