Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for more report formats in the VulnerabilityReport CRD (such as cyclonedx) #2275

Open
darren128 opened this issue Oct 3, 2024 · 0 comments
Open

Support for more report formats in the VulnerabilityReport CRD (such as cyclonedx) #2275

darren128 opened this issue Oct 3, 2024 · 0 comments
Labels
kind/feature Categorizes issue or PR as related to a new feature.

Comments

@darren128
Copy link

Use Case:
I am running the trivy operator in a cluster and want to integrate with other systems in a standard format (such as cyclonedx) for sbom / vulnerability reporting.

Proposal:
Support the formats available in the trivy cli in the operator image scan that produces the VulnerabilityReport CRD, maybe as a an extra field on the existing CRD in order to stay backwards compatible that just contains a blob output of the format specified through operator configuration.

I'm happy to spend some more time thinking this through and putting together a more detailed proposal and maybe a PR if there is interest in this!
@darren128 darren128 added the kind/feature Categorizes issue or PR as related to a new feature. label Oct 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/feature Categorizes issue or PR as related to a new feature.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@darren128