Add trivy vulnerability scanner and custom docker-make image

Trivy is used in the CI after building our Docker image. It scans the Docker image and our dependencies for known vulnerabilities. The docker-make image is a simple docker:latest containing make.
2021-05-18 15:33:09 +02:00
parent a48804bd19
commit 8d7aa2ea3c
4 changed files with 31 additions and 1 deletions
--- a/.gitignore
+++ b/.gitignore
@ -7,3 +7,6 @@ configuration.yaml
 # TLS certificate/key
 *.crt
 *.key
+
+# trivy artifacts
+.trivy