docs(devcontainer): add trivy and its VSCode Extension #2650

petermetz · 2023-08-31T20:05:47Z

Description

As a contributor I want to have a way to conveniently run a trivy security scan on my branches locally so that I'm getting much faster feedback about checks that will fail on the CI (we ran trivy checks for container scanning)

https://github.com/aquasecurity/trivy-vscode-extension

Acceptance Criteria

The dev container image is updated so that it ships with the trivy binary
The dev container configuration file is updated so that the VSCode extension is part of the recommended extensions: https://marketplace.visualstudio.com/items?itemName=AquaSecurityOfficial.trivy-vulnerability-scanner ( AquaSecurityOfficial.trivy-vulnerability-scanner)
The .vscode/extensions.json file is also updated so that the scanner is part of the extensions there as well

The text was updated successfully, but these errors were encountered:

ashnashahgrover · 2024-06-04T06:49:14Z

Working on this task.

Primary Changes 1) updated trivy verion in the .devcontainer file and included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension 2) updated trivy version in ci.yaml 3) included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension in the .vscode/extensions.json file 4) Updated node version so Dev container builds properly Fixes hyperledger-cacti#2650

Primary Changes 1) updated trivy verion in the .devcontainer file and included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension 2) updated trivy version in ci.yaml 3) included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension in the .vscode/extensions.json file 4) Updated node version so Dev container builds properly Fixes hyperledger-cacti#2650 Signed-off-by: ashnashahgrover <as19@williams.edu>

Primary Changes 1) updated trivy verion in the .devcontainer file and included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension 2) updated trivy version in ci.yaml 3) included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension in the .vscode/extensions.json file Fixes hyperledger-cacti#2650 Signed-off-by: ashnashahgrover <as19@williams.edu>

Primary Changes 1) updated trivy version in the .devcontainer file and included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension 2) updated trivy version in ci.yaml 3) included AquaSecurityOfficial.trivy-vulnerability-scanner vs-code extension in the .vscode/extensions.json file Fixes hyperledger-cacti#2650 Signed-off-by: ashnashahgrover <as19@williams.edu>

Primary Changes 1) updated trivy version in the .devcontainer file and included trivy vs-code extension 2) updated trivy version in ci.yaml 3) included trivy vs-code extension in the .vscode/extensions.json file Fixes hyperledger-cacti#2650 Signed-off-by: ashnashahgrover <as19@williams.edu>

Primary Changes 1) updated trivy version in the .devcontainer file and included trivy vs-code extension 2) updated trivy version in ci.yaml Changes required to incorporate 1) 3) included trivy vs-code extension in the .vscode/extensions.json file Fixes hyperledger-cacti#2650 Signed-off-by: ashnashahgrover <as19@williams.edu>

Primary Changes 1) updated trivy version in the .devcontainer file and included trivy vs-code extension Changes required to incorporate 1) 3) included trivy vs-code extension in the .vscode/extensions.json file Fixes hyperledger-cacti#2650 Signed-off-by: ashnashahgrover <as19@williams.edu>

petermetz added good-first-issue Good for newcomers good-first-issue-100-introductory P3 Priority 3: Medium labels Aug 31, 2023

petermetz added this to the v2.1.0 milestone Aug 31, 2023

petermetz self-assigned this Aug 31, 2023

petermetz added this to Cacti_Scrum_Project_v2.1.0_Release Aug 31, 2023

petermetz added documentation Improvements or additions to documentation Developer_Experience Security Related to existing or potential security vulnerabilities labels Aug 31, 2023

petermetz moved this to Todo in Cacti_Scrum_Project_v2.1.0_Release Aug 31, 2023

jagpreetsinghsasan assigned ashnashahgrover and unassigned petermetz Jun 4, 2024

jagpreetsinghsasan removed this from Cacti_Scrum_Project_v2.1.0_Release Jun 4, 2024

jagpreetsinghsasan added this to Cacti_Scrum_Project_v2_Release Jun 4, 2024

jagpreetsinghsasan moved this to In Progress in Cacti_Scrum_Project_v2_Release Jun 4, 2024

adrianbatuto moved this from In Progress to In review in Cacti_Scrum_Project_v2_Release Jun 11, 2024

This was referenced Jun 11, 2024

Trivy updates - https://github.com/hyperledger/cacti/issues/2650 #3306

Closed

docs(devcontainer): add trivy and its VSCode Extension #3307

Merged

ashnashahgrover mentioned this issue Jun 11, 2024

docs(devcontainer): add trivy and its VSCode Extension ashnashahgrover/cacti#1

Merged

5 tasks

petermetz closed this as completed in #3307 Sep 16, 2024

petermetz closed this as completed in c3bbbfe Sep 16, 2024

github-project-automation bot moved this from In review to Done in Cacti_Scrum_Project_v2_Release Sep 16, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

docs(devcontainer): add trivy and its VSCode Extension #2650

docs(devcontainer): add trivy and its VSCode Extension #2650

petermetz commented Aug 31, 2023

ashnashahgrover commented Jun 4, 2024

docs(devcontainer): add trivy and its VSCode Extension #2650

docs(devcontainer): add trivy and its VSCode Extension #2650

Comments

petermetz commented Aug 31, 2023

Description

Acceptance Criteria

ashnashahgrover commented Jun 4, 2024