Replies: 1 comment 2 replies
-
I think this is more of an Azure question than a Trivy question. You can try to follow this guide, which ends up with |
Beta Was this translation helpful? Give feedback.
2 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Question
I am trying to run a scenario where I want to host the Trivy Scanner on Azure Container Instance. Using that I want to run a Trivy scan for vulnerability and generate SBOM on the image hosted on my private azure container registry.
Question is, I would want to run the Trivy scanner using User Identity that has permission (AcrPull) on the Azure Container Registry. How do I pass that information within the Trivy Command. I saw documentation mentioned in
https://aquasecurity.github.io/trivy/v0.45/docs/advanced/private-registries/acr/
However, I don't want to deal with Client ID and Secret. Can I used Managed User Identity instead ? If yes, how ?
Target
Container Image
Scanner
Vulnerability
Output Format
JSON
Mode
Standalone
Operating System
Linux
Version
Beta Was this translation helpful? Give feedback.
All reactions