Disable Trivy secret scanning (#2547)

Signed-off-by: Sergio Castaño Arteaga <tegioz@icloud.com>
2022-11-24 13:02:34 +01:00 · 2022-11-24 13:02:34 +01:00 · 834a88bb28
parent 9d5776474f
commit 834a88bb28
1 changed files with 1 additions and 1 deletions
--- a/internal/scanner/scanner.go
+++ b/internal/scanner/scanner.go
@ -170,7 +170,7 @@ type TrivyScanner struct {
 func (s *TrivyScanner) ScanImage(image string) ([]byte, error) {
 	// Setup trivy command
 	trivyURL := s.cfg.GetString("scanner.trivyURL")
-	cmd := exec.CommandContext(s.ctx, "trivy", "--quiet", "image", "--server", trivyURL, "--timeout", "15m", "-f", "json", image) // #nosec
+	cmd := exec.CommandContext(s.ctx, "trivy", "--quiet", "image", "--security-checks", "vuln", "--server", trivyURL, "--timeout", "15m", "-f", "json", image) // #nosec
 	var stdout, stderr bytes.Buffer
 	cmd.Stdout = &stdout
 	cmd.Stderr = &stderr