Debian security tracker - TEMP vulnerabilities #6455
-
QuestionWhile scanning one of the debian images, some vulnerabilities are detected that are TEMP- and not CVEs. These are linked to debian security scanner. For instance, running this scan outputs multiple TEMP- vulnerabilities:
One of those TEMPs are linked here: TEMP-0841856-B18BAF Although these TEMPs can be ignored by setting Is there a way to just ignore TEMP- vulnerabilities from showing up in the output? TargetContainer Image ScannerVulnerability Output FormatTable ModeStandalone Operating SystemLinux Version0.50.1 |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
If you have a list of IDS, you can write them in .trivyignore. If you want to ignore all CVEs prefixed TEMP-, you can write a Rego policy. |
Beta Was this translation helpful? Give feedback.
If you have a list of IDS, you can write them in .trivyignore.
https://aquasecurity.github.io/trivy/v0.50/docs/configuration/filtering/#by-finding-ids
If you want to ignore all CVEs prefixed TEMP-, you can write a Rego policy.
https://aquasecurity.github.io/trivy/v0.50/docs/configuration/filtering/#by-rego