Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWS scanning #2476

Closed
itaysk opened this issue Jul 7, 2022 · 1 comment · Fixed by #2493
Closed

AWS scanning #2476

itaysk opened this issue Jul 7, 2022 · 1 comment · Fixed by #2493
Assignees
@liamg @owenrumney
Labels
kind/feature Categorizes issue or PR as related to a new feature.

Comments

@itaysk
Copy link
Contributor

itaysk commented Jul 7, 2022

Add a new target to trivy that scans an AWS account. By connecting to the AWS API, discovering relevant resources, and scanning them with current scanners. For starts we will scan for misconfigurations only.
the UX flow should be similar to Kubernetes scanning: start by a broad scan, and show summary only. then user can drill into resources to detailed findings.

Things to consider:

  • how to consistently specify an AWS resource (id/name/arn)
  • local caching of resources. to allow a responsive experience while "navigating" within an account
@itaysk itaysk added the kind/feature Categorizes issue or PR as related to a new feature. label Jul 7, 2022
@liamg liamg mentioned this issue Jul 11, 2022
Merged
6 tasks
@owenrumney
Copy link
Contributor

https://github.com/aquasecurity/defsec/issues/763

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@liamg liamg

@owenrumney owenrumney

Labels
kind/feature Categorizes issue or PR as related to a new feature.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: Add AWS Cloud scanning aquasecurity/trivy
3 participants
@itaysk @liamg @owenrumney