Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DAT-18039 DevOps :: Docker Vulnerability Scanning Enhancements #319

Merged
merged 11 commits into from
Jul 11, 2024
Merged

DAT-18039 DevOps :: Docker Vulnerability Scanning Enhancements #319

merged 11 commits into from
Jul 11, 2024

Commits on Jul 3, 2024

  1. 🔧 (trivy.yml): Remove trivy workflow file as it is no longer needed 

    ✨ (vulnerability-scan.yml): Add vulnerability scanning workflow to check for vulnerabilities in Docker images using Trivy and Docker Scout actions
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    c454874 View commit details
    Browse the repository at this point in the history

  2. ✨ (vulnerability-scan.yml): add manual workflow dispatch trigger for … 

    …vulnerability scanning to allow on-demand scans in addition to automated scans on push and pull requests.
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    f7c8e91 View commit details
    Browse the repository at this point in the history

  3. 🔧 (vulnerability-scan.yml): Comment out Slack notification on build f… 

    …ailure to reduce noise in the workflow

🔧 (vulnerability-scan.yml): Rename the job from "Trivy" to "Scout" for clarity and consistency
🔧 (vulnerability-scan.yml): Add Docker login step before running Docker Scout action to authenticate with Docker Hub
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    37cd2b2 View commit details
    Browse the repository at this point in the history

  4. ✨ (trivy.yml): Add workflows for vulnerability scanning using Trivy a… 

    …nd Docker Scout to improve security measures and identify potential vulnerabilities in the project.
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    8799842 View commit details
    Browse the repository at this point in the history

  5. 🔧 (.github/workflows/trivy.yml): grant write access to pull-requests … 

    …for docker/scout-action to write comments on pull requests
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    aa74ad0 View commit details
    Browse the repository at this point in the history

  6. 🔧 (trivy.yml): re-enable Slack notifications on build failure for Tri… 

    …vy and Docker Scout scans to improve visibility and communication in case of failures.
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    4c89d6c View commit details
    Browse the repository at this point in the history

  7. 🔧 (.github/workflows/trivy.yml): set trivy scan to exit with code 1 a… 

    …nd severity to CRITICAL for better handling of vulnerabilities.
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    253ec3c View commit details
    Browse the repository at this point in the history

  8. 🔧 (trivy.yml): Update severity and exit-code values for trivy scan to… 

    … improve vulnerability reporting accuracy

🔧 (trivy.yml): Update Slack notification messages to use correct GitHub context variables for better information display
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    1e205d3 View commit details
    Browse the repository at this point in the history

  9. 🔧 (trivy.yml): update artifact names and paths for trivy and scout se… 

    …curity reports to improve consistency and clarity
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    19a9d71 View commit details
    Browse the repository at this point in the history

  10. 🔧 (.github/workflows/trivy.yml): update Docker image names to include… 

    … suffix for better clarity and consistency in naming conventions
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    148c0d9 View commit details
    Browse the repository at this point in the history

  11. 🐛 (trivy.yml): fix syntax error in docker build command by removing e… 

    …xtra double quote after image name and suffix
    Alejandro Alvarez committed Jul 3, 2024
    Configuration menu
    Copy the full SHA
    119ee85 View commit details
    Browse the repository at this point in the history