blumeops/argocd/manifests/prowler/kustomization.yaml at 696024306c70600adfd6cd57d0ac579f4bda13d8 - eblume/blumeops - Forgejo: Beyond coding. We Forge.

eblume/blumeops

Erich Blume 696024306c

Build Container / detect (push) Successful in 39s

Details

Build Container / build-dockerfile (prowler) (push) Successful in 10m15s

Details

Add Prowler image vulnerability scanning for blumeops containers

Add Trivy to the Prowler container for image and IaC scanning.
New CronJob (Saturday 3am) scans all blumeops/* images in the
registry for CVEs, embedded secrets, and Dockerfile misconfigs.
Reports written to sifaka:/volume1/reports/prowler-images/.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-24 16:43:08 -07:00

16 lines

293 B

YAML

Raw Blame History

 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 namespace: prowler
 resources:
   - serviceaccount.yaml
   - rbac.yaml
   - pv-nfs.yaml
   - pvc.yaml
   - cronjob.yaml
   - cronjob-image-scan.yaml
 images:
   - name: registry.ops.eblu.me/blumeops/prowler
     newTag: v5.22.0-d021b35