Skip to content

Update trivy_scan.py #3159

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Jun 4, 2025
Merged

Update trivy_scan.py #3159

merged 2 commits into from
Jun 4, 2025

Conversation

juliusvonkohout
Copy link
Member

this should fix

Scanning  ghcr.io/kubeflow/model-registry/controller:latest
Error scanning ghcr.io/kubeflow/model-registry/controller:latest
2025-06-04T13:04:29.790Z	INFO	Vulnerability scanning is enabled
2025-06-04T13:04:29.790Z	INFO	Secret scanning is enabled
2025-06-04T13:04:29.790Z	INFO	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2025-06-04T13:04:29.790Z	INFO	Please see also https://aquasecurity.github.io/trivy/v0.48/docs/scanner/secret/#recommendation for faster secret detection
2025-06-04T13:04:29.849Z	FATAL	image scan error: scan error: unable to initialize a scanner: unable to initialize an image scanner: 4 errors occurred:
	* docker error: unable to inspect the image (ghcr.io/kubeflow/model-registry/controller:latest): Error response from daemon: No such image: ghcr.io/kubeflow/model-registry/controller:latest
	* containerd error: failed to initialize a containerd client: failed to dial "/run/containerd/containerd.sock": connection error: desc = "transport: error while dialing: dial unix /run/containerd/containerd.sock: connect: permission denied"
	* podman error: unable to initialize Podman client: no podman socket found: stat /run/user/1001/podman/podman.sock: no such file or directory
	* remote error: GET https://ghcr.io/token?scope=repository%3Akubeflow%2Fmodel-registry%2Fcontroller%3Apull&service=ghcr.io: DENIED: requested access to the resource is denied

@juliusvonkohout
Update trivy_scan.py
7b23761 
Signed-off-by: Julius von Kohout <45896133+juliusvonkohout@users.noreply.github.com>
@google-oss-prow google-oss-prow bot requested a review from kimwnasptd June 4, 2025 13:09
@juliusvonkohout
Copy link
Member Author

/approve

@tarekabouzeid for /lgtm

@google-oss-prow
Copy link

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: juliusvonkohout

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@juliusvonkohout
Update trivy_install.sh
e48f941 
Signed-off-by: Julius von Kohout <45896133+juliusvonkohout@users.noreply.github.com>
@juliusvonkohout juliusvonkohout self-assigned this Jun 4, 2025
@tarekabouzeid
Copy link
Member

/lgtm

@google-oss-prow google-oss-prow bot added the lgtm label Jun 4, 2025
@google-oss-prow google-oss-prow bot merged commit da80ff1 into master Jun 4, 2025
12 checks passed
@juliusvonkohout juliusvonkohout deleted the juliusvonkohout-patch-1 branch July 21, 2025 11:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kimwnasptd kimwnasptd Awaiting requested review from kimwnasptd

Assignees

@tarekabouzeid tarekabouzeid

@juliusvonkohout juliusvonkohout

Labels

approved lgtm size/XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@juliusvonkohout @tarekabouzeid