copa-action

copa-action copied to clipboard

Add examples for scanning when using docker/setup-buildx-action

4

I am struggling to integrate copa-action with my current Workflow. The workflow fails as I am trying to get copa to scan a local image, while it attempts to pull...

audunsolemdal

Signed-off-by: Sertac Ozercan

sozercan

Regarding Copa for scanning the docker image

11

Hello I am trying to use Copa for scanning the build docker image using its GitHub action, but getting below error.  As the action states, we have to give...

ofschnai

ashnamehrotra

Document new retry argument added in #50

ashnamehrotra

Support update all feature

3

Remove required argument of trivy scanner in order to support update all.

ashnamehrotra

401 Unauthorized pulling from private registry

9

Issue #16 is closed indicating that public/private registries are supported, but `project-copacetic/copa-action@main` fails to be able to pull from an ECR registry. I've logged into the registry every way in...

anthony-zawacki

Add a test workflow specifically for building and patching local images. Also add documentation clarifying that we will need to install Trivy and pass the `--docker-host flag` with the custom...

ashnamehrotra

Due to Docker running as root, vex output does not have user readable permissions. This is not a good experience, file should be saved with correct permissions. related #35

sozercan

Add trivy ignore list like copa: https://github.com/project-copacetic/copacetic/blob/main/integration/fixtures/trivy_ignore.rego

ashnamehrotra