DevOps

Use Trivy and Azure DevOps to scan container images for Vulnerabilities

Reading Time: 5 minutesSo, in this short article, I am going to walk you through how I am scanning for vulnerabilities in my container images during the CI pipeline using Azure DevOps. For this, I am using Trivy https://github.com/aquasecurity/trivy by AQUA https://www.aquasec.com/. It’s an open-source simple and comprehensive vulnerability scanner for containers. Perfect Read more

By Pixel Robots., ago

Getting started with Secure DevOps Kit for Azure

Reading Time: 4 minutesIn this article, I am going to show you how to Install Secure DevOps Kit for Azure (AzSK), do a scan against as subscription and then fix an issue using the recommendation. What is AzSK? Below is an overview of what AzSK is from their website. https://azsk.azurewebsites.net/README.html#overview The “Secure DevOps Read more

By Pixel Robots., ago