- Notifications
You must be signed in to change notification settings - Fork3
coder/coder-xray
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
- Query Artifactory for image vulnerability on workspace startup.
- Inform users when they are using a vulnerable image.
Apply the Helm chart to start monitoring workspaces:
helm repo add coder-xray https://helm.coder.com/coder-xray --namespace coder \helm install coder-xray coder-xray/coder-xray \--set coder.url="https://<your-coder-url>" \--set coder.secretName="<your coder token secret>" \--set artifactory.url="https://<your-artifactory-url>" \--set artifactory.secretName="<your artifactory secret>"
For a detailed step by step guide, see thescanning coder workspaces with xray guide.
NoteFor additional customization (such as customizing the image, details on creating a secret, etc.), you can use thevalues.yaml file directly.
In order to use this service the following is required:
- A Coder API token withat least Template Admin privileges
- An Artifactory token
Kubernetes provides aninformers API that streams pod and event data from the API server.
coder-xray listens for pod creation events with containers that have theCODER_AGENT_TOKEN environmentvariable set. All matching pods/containers are then queried against the provided Artifactory instance andany XRay results are then pushed to the provided Coder deployment.
About
JFrog XRay Integration
Resources
License
Code of conduct
Security policy
Uh oh!
There was an error while loading.Please reload this page.
Stars
Watchers
Forks
Packages0
Uh oh!
There was an error while loading.Please reload this page.
Uh oh!
There was an error while loading.Please reload this page.
Contributors5
Uh oh!
There was an error while loading.Please reload this page.