GitHub

False Positive / Risk Acceptance not preserved across different image tags when using Trivy scans

I currently have the following DefectDojo setup: • Deduplication is configured at the engagement level. • Docker images are scanned using trivy image. • For each image, a separate engagement is ...
GitHub

Gajumalavi/web--application-security-CI-CD

This project implements a complete DevSecOps pipeline that performs automated security scanning at every stage of the development process. The pipeline integrates eight distinct security scanning ...