container-image-scan-action
azure
Our great sponsors
container-image-scan-action | azure | |
---|---|---|
1 | 14 | |
12 | 124 | |
- | - | |
4.7 | 6.9 | |
about 1 month ago | about 1 month ago | |
Shell | Shell | |
The Unlicense | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
container-image-scan-action
-
Logging to the CrowdStrike Docker registry using the API client key pair fails
Ok, thanks for the info But I guess I need to make one step back and ask another question I'm trying to validate my container on Falcon Platform using Github action (https://github.com/CrowdStrike/container-image-scan-action) I provided client id and client secret for this action is it stated in readme and what I get is this docker login error. I see that under the hood this Github action makes a docker login call So I think my question would be how do I make this github action working despite that I provided values and still gets this Error response from daemon: Get "https://container-upload.us-2.crowdstrike.com/v2/": unauthorized error
azure
-
How to enable access to storage account?
Wrote a document which explains how limit access to PaaS - https://github.com/groovy-sky/azure/tree/master/paas-vnet-04 . IP is not working in some cases.
-
storage account (blob) behing app gateway ?
There is a problem if vendor is trying to access your storage from the Azure resource, located in the same region as the storage account (more detailed explanation here). Except that everything else seems reasonable.
-
[article] One more time about PaaS networking
Yep. Have skipped that part for a better visibility. Have wrote separate article about that - https://github.com/groovy-sky/azure/blob/master/paas-vnet-02/README.md
-
The main disadvantage of Private DNS Resolver
So was trying to make production-ready setup using Azure Private DNS resolver for accessing Private Endpoints from on-premises. Currently, self-hosted solution is used for that(wrote article about it).
-
Azure storage for on-prem application
We are using Private Endpoints and conditional forwarder to share access to on-prem. An example of such configuration you can read here - https://github.com/groovy-sky/azure/tree/master/paas-vnet-02 . Recently Microsoft announced which could be used for exactly same reason - https://docs.microsoft.com/en-us/azure/dns/dns-private-resolver-overview
-
Azure PaaS networking cheat sheet
Not for now. I already have wrote in a plain English few articles about this topic (1,2,3) with a more detailed explanation and practical examples (which you run). At least for now, there is nothing left, what I could share in that area. Probably, in the future I will try to find and tell something new about this topic :)
-
Can someone please explain how I can have full internal DNS resolution in a hybrid environment?
I have a draft of an article about this scenario - https://github.com/groovy-sky/azure/tree/master/paas-vnet-02
-
Securing resources access
A time ago started to learn about resource's protection(even wrote an article about private endpoints). Now want to summarize main technologies/options in one picture. Result you can see below. What do you think? Did I miss something? I know that not every resource/SKU have possibility to use service/private endpoints, which is why used "Try" word.
- Running 'whatismyip' service using Azure Functions
-
Azure FW and private link DNS
Special for such use-case wrote instruction how-to use CoreDNS, which is running as container instance, to expand Azure DNS to on-prem - https://github.com/groovy-sky/azure/tree/master/docker-coredns-00
What are some alternatives?
infrastructure-fivem - A series of CI/CD using Drone, Terraform, Docker and Kubernetes scripts to deploy a Fivem server on-demand.
Azure PowerShell - Microsoft Azure PowerShell
lxdbox - This tool helps you to isolate your workspaces inside LXD containers (Guest OS), share X.org, Pulseaudio, and Web Cameras from the host OS to your Guest OS.
pg_auto_failover_ansible - Ansible Playbook(s) to create/manage a cluster of PostgreSQL nodes running in a cluster with pg_auto_failover
ezinnit - ezinnit initializes your gitlab repository and your server. Your app will be live and commits to main will automatically deploy.
infrastructure-developer-tools - Infrastructure developer tools includes set of plugins and services that make it easier than ever to build, test and deploy infrastructure.
solr-password-generator - Solr security.json password generator. Generate password for the file security.json using a script.
Runbook.md - Write Bash executable runbooks in Markdown.
hadolint-gh-action - A hadolint linter for github actions that provides code annotations (and more)
hands-on-DevOps - A hands-on DevOps course covering the culture, methods and repeated practices of modern software development involving Packer, Vagrant, VirtualBox, Ansible, Kubernetes, K3s, MetalLB, Traefik, Docker-Compose, Docker, Taiga, GitLab, Drone CI, SonarQube, Selenium, InSpec, Alpine 3.10, Ubuntu-bionic, CentOS 7...
AzOps - AzOps is a PowerShell module which deploys (Push) ARM Resource Templates & Bicep files at all Azure scope levels and exports (Pull) ARM resource hierarchy.
raspberry-pi-dramble - DEPRECATED - Raspberry Pi Kubernetes cluster that runs HA/HP Drupal 8