Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

codepipeline-actions: support InspectorScan action #33377

Open
1 of 2 tasks
go-to-k opened this issue Feb 11, 2025 · 1 comment · May be fixed by #33378
Open
1 of 2 tasks

codepipeline-actions: support InspectorScan action #33377

go-to-k opened this issue Feb 11, 2025 · 1 comment · May be fixed by #33378
Labels
@aws-cdk/aws-codepipeline-actions effort/medium Medium work item – several days of effort feature-request A feature should be added or improved. p2

Comments

@go-to-k
Copy link
Contributor

go-to-k commented Feb 11, 2025
edited
Loading

Describe the feature

AWS CodePipeline introduces new invoke action: InspectorScan action.

Use Case

The InspectorScan action enables you to easily scan images to ECR as part of your pipeline execution.

Amazon Inspector is a vulnerability management service that automatically discovers workloads and continually scans them for software vulnerabilities and unintended network exposure. The InspectorScan action in CodePipeline automates detecting and fixing security vulnerabilities in your open source code. The action is a managed compute action with security scanning capabilities. You can use InspectorScan with application source code in your third-party repository, such as GitHub or Bitbucket Cloud, or with images for container applications. Your action will scan and report on vulnerability levels and alerts that you configure.

This action allows you to build and publish images without first creating a CodeBuild project in pipelines.

Proposed Solution

Add InspectorScan class that extends Action class to aws-codepipeline-actions module.

Other Information

No response

Acknowledgements

  • I may be able to implement this feature request
  • This feature might incur a breaking change

CDK version used

2.178.1

Environment details (OS name and version, etc.)

Mac
@go-to-k go-to-k added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Feb 11, 2025
@go-to-k go-to-k linked a pull request Feb 11, 2025 that will close this issue
Open
1 task
@go-to-k go-to-k changed the title codepipeline-actions: support InspectorScan invoke action codepipeline-actions: support InspectorScan action Feb 11, 2025
@pahud
Copy link
Contributor

pahud commented Feb 11, 2025
edited
Loading

Thank you @go-to-k

@pahud pahud added p2 effort/medium Medium work item – several days of effort and removed needs-triage This issue or PR still needs to be triaged. labels Feb 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
@aws-cdk/aws-codepipeline-actions effort/medium Medium work item – several days of effort feature-request A feature should be added or improved. p2
Projects
None yet
Milestone
No milestone
2 participants
@pahud @go-to-k