feat(checks): Schedule automated releases for trivy-checks bundles #7030
Labels
kind/feature
Categorizes issue or PR as related to a new feature.
scan/misconfiguration
Issues relating to misconfiguration scanning
Comments
simar7
added
kind/feature
|
cc @chen-keinan |
|
Did you mean some other tag for automatically released bundles, not |
Ah you're right, we should use |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Today trivy-checks bundles are released manually, usually once a month in time for the next trivy release.
We could automate this process by defining the trigger for a bundle release on time. That way, we could schedule a new bundle release every 24h (as an example).
This automatically generated bundle could use the
:canarytag. This would ensure that downstream Trivy users don't automatically pick it up but instead can chose to if they manually specify to do so. For the time being we would still generate a tag each month to cut a new tagged release of the bundle which downstream trivy users can use.Requires #7029 to be in place as we will need to make sure the automatically released bundles don't cause breakages in any way.
The text was updated successfully, but these errors were encountered: