Code Security and container image vulnerability scanning #3813
Comments
|
hey i want to work on this issue |
|
Hey @santhosh-tg!! Looking forward to submitting a proposal for the project. |
|
@santhosh-tg |
|
Having deep understanding in Testing, Looking forward to work in this project. |
|
@santhosh-tg i have some prior experience in container and code security. Would love to contribute in this project. |
|
@santhosh-tg I would love to contribute to this project |
|
Hey @santhosh-tg!! Looking forward to submitting a proposal for the project. |
|
hello sir, I wanted to work with you and submit a proposal for this project |
|
Hey @santhosh-tg , |
Project Details:
We currently perform only code quality check on Coverage using sonarcloud.
Code security is an important aspect using which we will be able to identify security issues and vulnerabilities during the development phase.
Along with code security we must also implement docker container scanning for vulnerabilities .Docker image vulnerability scanning could be defined as identifying known security vulnerabilities in the packages listed in the Docker image. Vulnerability scanning allows us to find vulnerabilities in container images and fix them before using or pushing the image to the registry.
Features be to be implemented:
Code security scan on code.
Containerimage vulnerability scanning.
Learning Path
Complexity: Medium
Skills Required: DevOps
Name of Mentors:
@santhosh-tg
Project size:
TBD
Project repos:
https://github.com/project-sunbird/sunbird-devops/
https://github.com/Sunbird-Ed/
Acceptance Criteria:
Code security and container image vulnerability scanning is setup
Milestones
The text was updated successfully, but these errors were encountered: