-
Notifications
You must be signed in to change notification settings - Fork 12
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Check for CVEs #46
Comments
Look into this |
Or you can use this action directly: https://github.com/snyk/actions |
Ok, so I set up Snyk to scan my codebase. Either one of the two things is happening here:
Anyway my search for a Code scanning tool for my CI is not done yet then! |
Stale issue message |
Stale issue message |
Stale issue message |
Stale issue message |
Stale issue message |
Right now the CI is set up such that every successful build of Docker Image will be pushed to ghcr.
But this is very risky, as I am not scanning for CVEs. Neither I have Image scanning open on my Docker Hub as I am broke.
So we need to find some CLI-based Docker Image Scanning Jobs in the CI.
Refer to This: Here
The text was updated successfully, but these errors were encountered: