Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Scanning images from quay.io #4

Open
blacs30 opened this issue May 14, 2020 · 1 comment
Open

Scanning images from quay.io #4

blacs30 opened this issue May 14, 2020 · 1 comment

Comments

@blacs30
Copy link
Contributor

blacs30 commented May 14, 2020

Quay images like quay.io/coreos/prometheus-operator are not scannable directly with trivy because quay doesn't support the v2.2 manifest schema see also this github issue in the trivy repo
A workaround is to pull the image manually and then run trivy - this doesn't seem to make sense in a pod which shouldn't run the docker daemon.

Another option I see is to download the image as a file without docker/crictl involved and then run trivy scan against that file.

Are there other possibilities or is there already a workaround to scan quay images?
@sbkg0002
Copy link

Is there a possible solution?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sbkg0002 @blacs30