Skip to content

feat: Run trivy container scan #192

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
franciscoovazevedo wants to merge 8 commits into from

codacy and copilot review changes applied

078a26a
Select commit
Loading
Failed to load commit list.
Closed

feat: Run trivy container scan #192

codacy and copilot review changes applied
078a26a
Select commit
Loading
Failed to load commit list.
Codacy Production / Codacy Static Code Analysis required action Jan 26, 2026 in 0s

2 new security issues (0 max.).

Codacy Here is an overview of what got changed by this pull request:

Issues
======
- Added 3
           

Complexity increasing per file
==============================
- cli-v2.go  1
- cmd/container_scan.go  22
- cmd/container_scan_test.go  32

See the complete overview on Codacy

Annotations

Check warning on line 108 in cmd/container_scan.go

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

cmd/container_scan.go#L108 

Method runContainerScan has a cyclomatic complexity of 9 (limit is 7)

Check failure on line 137 in cmd/container_scan.go

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

cmd/container_scan.go#L137 

Detected non-static command inside Command.

Check failure on line 137 in cmd/container_scan.go

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

cmd/container_scan.go#L137 

OS command injection is a critical vulnerability that can lead to a full system compromise as it may allow an adversary to pass in arbitrary commands or arguments to be executed.
View more details on Codacy Production