trivy scanning vulnerabilities for wazuh-manager 4.3.8 to 4.4.4 docker image failed
172 views
Skip to first unread message
Ciocoiu Petrisor
Sep 12, 2023, 3:24:41 AM9/12/23
to Wazuh | Mailing List
Hi team,
Do you know that wazuh-manager 4.3.8 to 4.4.4 docker image cannot be passed by Trivy due to the "HIGH: AsymmetricPrivateKey (private-key)" found on path "/var/ossec/etc/sslmanager.key:" ?
Is there a solution to be passed by the Trivy ?
Thanks
Javier Sanchez Gil
Sep 12, 2023, 7:18:08 AM9/12/23
to Wazuh | Mailing List
Hi Ciocoiu.
It seems, as seen here https://github.com/wazuh/wazuh-docker/actions/workflows/trivy.yml, that Trivy is currently only tested with wazuh-docker 4.3.
Could you please share the logs regarding this issue with me?
Could you please share the logs regarding this issue with me?
Reply all
Reply to author
Forward
0 new messages