Skip to content
Blame Permalink
  • Lavanya M's avatar
    309fe893
    feat: add IaC scanning (Checkov+Trivy), extend cosigning to develop branch · 309fe893
    Lavanya M authored 
    - Replace basic k8s trivy scan with full IaC scan (Checkov + Trivy)
  covering Terraform, CloudFormation, K8s, Helm, ARM, Ansible, Dockerfile, GH Actions
- Extend image signing and SLSA provenance attestation to develop branch
- Add new templates: docker-bench, sbom-syft, slsa-provenance, sonarqube
- Add example caller pipelines and onboarding docs
- Add catalog-info.yaml for GitLab CI/CD Catalog registration
- Update security-full.yml to be fully self-contained (all templates inlined)
    309fe893
    feat: add IaC scanning (Checkov+Trivy), extend cosigning to develop branch
    Lavanya M authored 
    - Replace basic k8s trivy scan with full IaC scan (Checkov + Trivy)
  covering Terraform, CloudFormation, K8s, Helm, ARM, Ansible, Dockerfile, GH Actions
- Extend image signing and SLSA provenance attestation to develop branch
- Add new templates: docker-bench, sbom-syft, slsa-provenance, sonarqube
- Add example caller pipelines and onboarding docs
- Add catalog-info.yaml for GitLab CI/CD Catalog registration
- Update security-full.yml to be fully self-contained (all templates inlined)