Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement Synchronous Scan for Built Images in CI Pipeline #25

Open
leiicamundi opened this issue Mar 14, 2024 · 0 comments
Open

Implement Synchronous Scan for Built Images in CI Pipeline #25

leiicamundi opened this issue Mar 14, 2024 · 0 comments
Labels
enhancement New feature or request good first issue Good for newcomers

Comments

@leiicamundi
Copy link
Contributor

leiicamundi commented Mar 14, 2024
edited

Description:

Problem:
Currently, our CI pipeline does not perform synchronous vulnerability scans on built images. This means that changes can be integrated without prior verification of the packages present in these images, potentially introducing vulnerabilities into our system.

Proposal:
It would be beneficial to add a synchronous scan for built images in our CI pipeline. This would ensure that before integrating changes, we verify that the packages present in the images are healthy and do not contain fixable or critical vulnerabilities.

Discussion:
This topic will likely require discussion the InfoSec team and their best practices.

Related Branch:
The feature/snyk-integ branch proposes an initial draft for this implementation.
@leiicamundi leiicamundi added enhancement New feature or request good first issue Good for newcomers labels Mar 14, 2024
@leiicamundi leiicamundi mentioned this issue Mar 14, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request good first issue Good for newcomers
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@leiicamundi