Skip to content

feat: add trivy for docker security #63

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
JaeAeich opened this issue Jan 11, 2025 · 2 comments
Open

feat: add trivy for docker security #63

JaeAeich opened this issue Jan 11, 2025 · 2 comments

Comments

@JaeAeich
Copy link
Collaborator

Use trivy for docker security scan.
@Nidhi091999
Copy link
Contributor

Hi @JaeAeich ,

Where should Trivy be called from—hooks/post_gen_project.py or GitHub Actions? Also, how can I retrieve the current Docker image name and tag? Is it derived from {{ cookiecutter.project_name_dashed }}?

@JaeAeich
Copy link
Collaborator Author

JaeAeich commented Feb 7, 2025

Trivy would come in github actions, but this is blocked by #24.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@JaeAeich @Nidhi091999