Skip to content

Allow ignoring specific CVEs
Compare
Choose a tag to compare
@hxtk hxtk released this 31 Dec 18:47
· 85 commits to main since this release
v2.2.0
e0feedf

Change log

  • Documentation changes to clarify that the explicit [name].tar target for images is preferred.
  • Add ignore_cves attribute so users can specify CVEs they intend to ignore.
  • Use a Grype cache in each test's respective $RUNFILES_DIR to improve test isolation.

WORKSPACE Setup

http_archive(
    name = "com_github_hxtk_rules_anchore",
    sha256 = "0ebe243333ff8108e9aa4a58450c561ceeb22b0a233d6e8bc9310fa8a3efc51b",
    strip_prefix = "rules_anchore-2.2.0",
    urls = ["https://github.com/hxtk/rules_anchore/archive/refs/tags/v2.2.0.zip"],
)

load("@com_github_hxtk_rules_anchore//:deps.bzl", "anchore_deps")

anchore_deps()

load("@com_github_hxtk_rules_anchore//:extra_deps.bzl", "anchore_extra_deps")

# By default, this method configures a Go toolchain. If you have already
# configured a Go toolchain in your WORKSPACE, pass `configure_go=False`.
anchore_extra_deps()
Assets 2
Loading