feat(misconf): Ensure policy bundles are compatible #4938

simar7 · 2023-08-04T04:20:49Z

As part of #4197 we came to the conclusion that policy bundles must be forward and backwards compatible.

For this to guaranteed, we need to ensure each generated bundle is compatible with the existing version of Trivy. We can ensure the following such as:

Build new defsec bundle with each defsec commit
Load this bundle in via a unit test in Trivy using the --policy-bundle-repository flag.
Ensure proper operation

The text was updated successfully, but these errors were encountered:

simar7 added scan/misconfiguration Issues relating to misconfiguration scanning target/cloud Issues relating to cloud account scanning labels Aug 4, 2023

simar7 mentioned this issue Aug 10, 2023

test(bundle): Add bundle integration testing aquasecurity/defsec#1421

Merged

simar7 added this to the v0.45.0 milestone Aug 10, 2023

simar7 self-assigned this Aug 10, 2023

itaysk added kind/feature Categorizes issue or PR as related to a new feature. and removed target/cloud Issues relating to cloud account scanning labels Aug 14, 2023

simar7 closed this as completed in aquasecurity/defsec#1421 Aug 30, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(misconf): Ensure policy bundles are compatible #4938

feat(misconf): Ensure policy bundles are compatible #4938

simar7 commented Aug 4, 2023

feat(misconf): Ensure policy bundles are compatible #4938

feat(misconf): Ensure policy bundles are compatible #4938

Comments

simar7 commented Aug 4, 2023