Hacker News new | ask | show | jobs
by 8organicbits 910 days ago
If this detects things that Docker misses, then it's a good product. Consider adding support for GitHub Actions so a PR can automatically kick off a scan. You'll see lots of repeat images, so cache appropriately. With an integration, I think you could charge a subscription for this tool.
1 comments
smitty1110 910 days ago
It's just Trivy under the hood, there's already an action on the marketplace for that: https://github.com/aquasecurity/trivy-action
link