trivy

module

v0.0.0-...-f7f94de Latest Latest Go to latest Published: May 28, 2020 License: Apache-2.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/fairwindsops/insights-plugins

README ¶

Trivy

This is a wrapper around Aqua Security Trivy that will retrieve results and create a JSON result for the uploader to process.

Running locally

You can run the trivy plugin against e.g. a KIND cluster by running:

docker build -t fw-trivy .
docker run --network host --privileged \
  -e "KUBECONFIG=/root/.kubeconfig" \
  -e "MAX_CONCURRENT_SCANS=5" \
  -v `pwd`/output:/output \
  -v $HOME/.kube/kind-config-kind:/root/.kubeconfig \
  fw-trivy

Directories ¶

Path	Synopsis
pkg This script minimizes the size of a trivy report by factoring out vulnerability details, so that details for common vulnerabilities are not duplicated for each instance of that vulnerability.	This script minimizes the size of a trivy report by factoring out vulnerability details, so that details for common vulnerabilities are not duplicated for each instance of that vulnerability.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL