Commit a86ebbbf authored by Bertrand Goareguer's avatar Bertrand Goareguer
Browse files

fix(trivy): disable telemetry and version check

parent 1ff36934

README.md

+1 −1
Original line number Diff line number Diff line
@@ -581,7 +581,7 @@ In addition to a textual report in the console, this job produces the following 
| --------------------- | ---------------------------------------- | ----------------- |

| `trivy-image` / `TF_TRIVY_IMAGE` | the Docker image used to run trivy       | `docker.io/aquasec/trivy`  <br/>[![Trivy Badge](https://to-be-continuous.gitlab.io/doc/secu/trivy-badge-TF_TRIVY_IMAGE.svg)](https://to-be-continuous.gitlab.io/doc/secu/trivy-TF_TRIVY_IMAGE) |

| `trivy-disabled` / `TF_TRIVY_DISABLED` | Set to `true` to disable trivy            | _none_ (enabled) |

| `trivy-args` / `TF_TRIVY_ARGS` | trivy config [options and args](https://aquasecurity.github.io/trivy/latest/docs/references/configuration/cli/trivy_config/) | `.` |

| `trivy-args` / `TF_TRIVY_ARGS` | trivy config [options and args](https://aquasecurity.github.io/trivy/latest/docs/references/configuration/cli/trivy_config/) | `--disable-telemetry --skip-version-check .` |



In addition to a textual report in the console, this job produces the following reports, kept for one day and only available for download by users with the Developer role or higher:

kicker.json

+1 −1
Original line number Diff line number Diff line
@@ -107,7 +107,7 @@ 
        {

          "name": "TF_TRIVY_ARGS",

          "description": "trivy config [options and args](https://aquasecurity.github.io/trivy/latest/docs/references/configuration/cli/trivy_config/)",

          "default": "."

          "default": "--disable-telemetry --skip-version-check ."

        }

      ]

    },

templates/gitlab-ci-terraform.yml

+1 −1
Original line number Diff line number Diff line
@@ -74,7 +74,7 @@ spec: 
      default: docker.io/aquasec/trivy

    trivy-args:

      description: trivy config [options and args](https://aquasecurity.github.io/trivy/latest/docs/references/configuration/cli/trivy_config/)

      default: .

      default: --disable-telemetry --skip-version-check .

    checkov-enabled:

      description: Enable checkov

      type: boolean