Sandboxed Trivy
Version updated for https://github.com/lhotari/sandboxed-trivy-action to version v1.0.0.
- This action is used across all versions by ? repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
The Sandboxed Trivy Action is a GitHub Action designed to run the Trivy vulnerability scanner within a highly secure, sandboxed Docker container. It automates the detection of vulnerabilities in container images, file systems, code repositories, and infrastructure-as-code configurations, while employing strict security measures to prevent container escapes and limit access to sensitive resources. Key features include support for various scan types, integration with GitHub Code Scanning, and built-in caching for vulnerability databases.
Release notes
Full Changelog: https://github.com/lhotari/sandboxed-trivy-action/compare/v0.1.0...v1.0.0