Improving your CI/CD Pipeline: Helm Charts Security Scanning with Trivy and GitHub Actions

This page summarizes the projects mentioned and recommended in the original post on dev.to

Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
  • trivy

    Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

    In this article, I will demo how we can perform automated vulnerability scans for Helm Charts using GitHub Actions and Trivy.

  • sample-helm-devsecops

    Sample helm chart to demonstrate how to integrate devsecops (trivy security scanning) with github actions

    Here is the repo for this article. Follow me on GitHub for more about DevOps and DevSecOps.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts