From 1b9cb33f135091a8491ffe1cffa1004058a9fdc1 Mon Sep 17 00:00:00 2001 From: Jeremy Adams Date: Sun, 12 Nov 2023 11:00:31 -0800 Subject: [PATCH 1/3] docs: Move Azure DevOps out of GH Actions section Signed-off-by: Jeremy Adams --- docs/ecosystem/cicd.md | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/docs/ecosystem/cicd.md b/docs/ecosystem/cicd.md index 301902cee68b..314661fe84ba 100644 --- a/docs/ecosystem/cicd.md +++ b/docs/ecosystem/cicd.md @@ -1,5 +1,12 @@ # CI/CD Integrations +## Azure DevOps (Official) +[Azure Devops](https://azure.microsoft.com/en-us/products/devops/#overview) is Microsoft Azure cloud native CI/CD service. + +Trivy has a "Azure Devops Pipelines Task" for Trivy, that lets you easily introduce security scanning into your workflow, with an integrated Azure Devops UI. + +👉 Get it at: + ## GitHub Actions [GitHub Actions](https://github.com/features/actions) is GitHub's native CI/CD and job orchestration service. @@ -9,13 +16,6 @@ GitHub Action for integrating Trivy into your GitHub pipeline 👉 Get it at: -## Azure DevOps (Official) -[Azure Devops](https://azure.microsoft.com/en-us/products/devops/#overview) is Microsoft Azure cloud native CI/CD service. - -Trivy has a "Azure Devops Pipelines Task" for Trivy, that lets you easily introduce security scanning into your workflow, with an integrated Azure Devops UI. - -👉 Get it at: - ### trivy-action (Community) GitHub Action to scan vulnerability using Trivy. If vulnerabilities are found by Trivy, it creates a GitHub Issue. From 164f6e69fb73a2b7066adaf68573059c84ccfdca Mon Sep 17 00:00:00 2001 From: Jeremy Adams Date: Sun, 12 Nov 2023 11:55:48 -0800 Subject: [PATCH 2/3] docs: Add Dagger Trivy integration section Signed-off-by: Jeremy Adams --- docs/ecosystem/cicd.md | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/docs/ecosystem/cicd.md b/docs/ecosystem/cicd.md index 314661fe84ba..bded70e2f1ad 100644 --- a/docs/ecosystem/cicd.md +++ b/docs/ecosystem/cicd.md @@ -34,6 +34,14 @@ The trivy buildkite plugin provides a convenient mechanism for running the open- 👉 Get it at: https://github.com/equinixmetal-buildkite/trivy-buildkite-plugin +## Dagger (Community) +[Dagger](https://dagger.io/) is CI/CD as code that runs anywhere. + +The Dagger module for Trivy provides functions for scanning container images from registries as well as Dagger Container objects from any Dagger SDK (e.g. Go, Python, Node.js, etc). + +👉 Get it at: + + ## Semaphore (Community) [Semaphore](https://semaphoreci.com/) is a CI/CD service. From d8136dd6acd15480ddff84c994b25b2bc0aee6b6 Mon Sep 17 00:00:00 2001 From: Jeremy Adams Date: Fri, 17 Nov 2023 05:42:49 -0800 Subject: [PATCH 3/3] docs: Make Buildkite section H2 ## like rest Signed-off-by: Jeremy Adams --- docs/ecosystem/cicd.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/ecosystem/cicd.md b/docs/ecosystem/cicd.md index bded70e2f1ad..12d050cd6b0e 100644 --- a/docs/ecosystem/cicd.md +++ b/docs/ecosystem/cicd.md @@ -28,7 +28,7 @@ In this action, Trivy scans the dependency files such as package-lock.json and g 👉 Get it at: -### Buildkite Plugin (Community) +## Buildkite Plugin (Community) The trivy buildkite plugin provides a convenient mechanism for running the open-source trivy static analysis tool on your project.