Set up known-vulnerability scanning for container images
Closed this issue · 1 comments
ericcornelissen commented
Summary
Create a default audit command to audit container images (i.e. Containerfile) so as to stay on secure base images.
Suggestions, tips, thoughts are welcome.
Goals
The solution:
- (must) be runnable by anyone.
- (must) allow for ignoring specific vulnerabilities manually.
- (ideally) allows for ignoring vulnerabilities without fixes.
ericcornelissen commented
Closing this because this project already such a command: make audit-image.