Skip to content

Commit

Permalink
docs: Add container image scanning in security policy (kedacore#1882)
Browse files Browse the repository at this point in the history 
Signed-off-by: Tom Kerkhove <kerkhove.tom@gmail.com>
Signed-off-by: nilayasiktoprak <nilayasiktoprak@gmail.com>
  • Loading branch information
@tomkerkhove @nilayasiktoprak
tomkerkhove authored and nilayasiktoprak committed Oct 23, 2021
1 parent 40e1ed2 commit a442bc6
Showing 1 changed file with 4 additions and 3 deletions.
7 changes: 4 additions & 3 deletions SECURITY.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,10 +14,11 @@ Here's an overview:

## Prevention

KEDA maintainers are working to incorporate prevention by using various measures:
Container images are scanned in every pull request (PR) with [Snyk](https://snyk.io/) to detect new vulnerabilities.

- Scan published container images ([issue](https://github.com/kedacore/keda/issues/1041))
- Scan container images for changes in PRs ([issue](https://github.com/kedacore/keda/issues/1040))
KEDA maintainers are working to improve our prevention by adding additional measures:

- Scan published container images on GitHub Container Registry ([issue](https://github.com/kedacore/keda/issues/1041))
- Scan changes to Helm charts in PRs ([issue](https://github.com/kedacore/charts/issues/64))

## Disclosures
Expand Down

0 comments on commit a442bc6

Please sign in to comment.