Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Add resource & security context config options for trivy db cache #3037

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
May 23, 2025
Merged

Add resource & security context config options for trivy db cache #3037

merged 7 commits into from
May 23, 2025

Conversation

J12934
Copy link
Member

@J12934 J12934 commented May 14, 2025

Description

Closes #2869

Checklist

  • Test your changes as thoroughly as possible before you commit them. Preferably, automate your test by unit/integration tests.
  • Make sure that all your commits are signed-off and that you are added to the Contributors file.
  • Make sure that all CI finish successfully.
  • Optional (but appreciated): Make sure that all commits are Verified.

J12934 added 5 commits May 14, 2025 10:59
@J12934
Make trivy db cache resources configurable
a065510 
Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@J12934
Add sensible security context settings for trivy db cache
e2a009c 
Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@J12934
Explicitly run trivy db cache with a non root user id
c3e6747 
Event though it's not configured in the upstream image

Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@J12934
Add volume mounts to trivy container to allow to set the general FS t…
935148e 
…o read only

Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@J12934
Update JuiceShop example scan image
4b3485b 
Old ones were outdated and not supported by trivy anymore

Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@J12934 J12934 self-assigned this May 14, 2025
@J12934 J12934 added enhancement New feature or request scanner Implement or update a security scanner labels May 14, 2025
@netlify Netlify
Copy link

netlify bot commented May 14, 2025
edited
Loading

Deploy Preview for docs-securecodebox canceled.

Name Link
🔨 Latest commit 76c33c7
🔍 Latest deploy log https://app.netlify.com/sites/docs-securecodebox/deploys/68246690ce78b2000866eaa9

@J12934 J12934 moved this from Triage to To Review in secureCodeBox v4 May 14, 2025
J12934 added 2 commits May 14, 2025 11:43
@J12934
Update helm snapshot for security & volume changes
2289434 
Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@J12934
Set storage limits for cache volumes
76c33c7 
Signed-off-by: Jannik Hollenbach <jannik.hollenbach@iteratec.com>
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented May 14, 2025
edited
Loading

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@github-project-automation github-project-automation bot moved this from To Review to Reviewer Approved in secureCodeBox v4 May 23, 2025
@Reet00 Reet00 merged commit 35dbd77 into secureCodeBox:main May 23, 2025
51 checks passed
@github-project-automation github-project-automation bot moved this from Reviewer Approved to Done in secureCodeBox v4 May 23, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Reet00 Reet00 Reet00 approved these changes

Assignees

@J12934 J12934

Labels
enhancement New feature or request scanner Implement or update a security scanner
Projects
secureCodeBox v4
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Enable resource requests/limits for trivyDatabaseCache
2 participants
@J12934 @Reet00
Morty Proxy This is a proxified and sanitized view of the page, visit original site.