forked from kagenti/kagenti
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathtrivy.yaml
More file actions
16 lines (15 loc) · 705 Bytes
/
Copy pathtrivy.yaml
File metadata and controls
16 lines (15 loc) · 705 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
# Trivy configuration for Kagenti
# See: https://aquasecurity.github.io/trivy/latest/docs/references/configuration/config-file/
misconfiguration:
# Trusted container image registries for KSV-0125 checks.
# These registries are used in Kagenti deployments:
# - registry.redhat.io: Red Hat certified images (PostgreSQL, UBI)
# - image-registry.openshift-image-registry.svc:5000: OpenShift internal registry for on-cluster builds
# - ghcr.io: GitHub Container Registry (upstream images)
# - docker.io: Docker Hub (standard images)
kubernetes:
trusted-registries:
- "docker.io"
- "ghcr.io"
- "registry.redhat.io"
- "image-registry.openshift-image-registry.svc:5000"