Giters

R3DRUN3 / copa-action

:octocat: GitHub Action for Copacetic: Directly patch container image vulnerabilities

Home Page:https://project-copacetic.github.io/copacetic/website/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Copacetic Action

Marketplace

This action patches vulnerable containers using Copa. Copacetic Action is supported with Copa version 0.3.0 and later.

Inputs

Name Type Required Default Description
image String True Image reference to patch
image-report String True Trivy JSON vulnerability report of the image to patch
patched-tag String True Patched image tag
timeout String False 5m Timeout for copa patch
buildkit-version String False latest Buildkit version
copa-version String False latest Copa version
output String False Output filename (available with copa v0.5.0 and later)
format String False openvex Output format (available with copa v0.5.0 and later)

Outputs

Name Type Description
patched-image String Image reference of the patched image

Example usage

https://github.com/project-copacetic/copa-action/blob/941743581b0da5e581ca5a575f9316228c2f6c00/.github/workflows/patch.yaml#L1-L77

About

:octocat: GitHub Action for Copacetic: Directly patch container image vulnerabilities

https://project-copacetic.github.io/copacetic/website/

License:MIT License

Languages

Language:Shell 55.5%Language:Dockerfile 44.5%