Comments (4)
Hi @danielpacak
For issue #5
I think you can consider using something like below command to get the latest release on github:curl -sL -o /dev/null -w %{url_effective} https://github.com/aquasecurity/harbor-scanner-trivy/releases/latest
This is actually referenced from goreleaser script
Thank you @bitsf for the suggestion. We'll check if we can use it with https://github.com/aquasecurity/trivy /cc @knqyf263
from harbor-scanner-trivy.
@danielpacak Will this be fixed? harbor 2.0 will release soon.
from harbor-scanner-trivy.
@danielpacak Will this be fixed? harbor 2.0 will release soon.
@bitsf We double checked and unfortunately the anonymous access to the https://github.com/aquasecurity/trivy-db/releases/latest endpoint is also subject to rate limit. What's more we're downloading the latest asset file for the given release. And there's also flag to download full or light DB that we take into account in Trivy.
So for now and Harbor 2.0 the best is to go for GitHub token if the rate limit is a concern.
from harbor-scanner-trivy.
OK, got it.
from harbor-scanner-trivy.
Related Issues (20)
- Scan report is missing the binary related to vulnerability HOT 1
- the length of usernames and passwords must match with 2.8.2 HOT 8
- About vulnerabilities [email protected] on image docker
- mkdir /home/scanner/.cache/trivy/fanal: permission denied HOT 1
- ERROR: column t0.critical_cnt does not exist HOT 1
- It does not work when scan java program HOT 1
- Trivy status goes unhealthy during the scan
- how to skip java db update when scanning start
- Allow image layer cache (fanal.db) to be stored in Redis HOT 1
- Trivy scan results are not up to date HOT 1
- Trivy redis connection support redis TLS mode HOT 3
- the helm repo has a bogus release with version 0.31.0 HOT 5
- Allow disable metrics api
- Add private repo environment variable
- /api/v1/scan API should return 400 to the client when the enabled_capabilities.produces_mime_types not specified HOT 1
- /api/v1/scan/{scan_request_id}/report should send http 400 when the sbom_media_type is missed for sbom scan HOT 1
- trivy should skip to generate sbom for container images that have layers[0].mediaType being not valid HOT 2
- Trivy use a lot space in /var/lib/docker/overlay and grow faster HOT 1
- Specify `--image-src remote`
- Harbor failed to connect on trivy-adapter api since v0.31.0 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from harbor-scanner-trivy.