feat: add docker hub onVulnerabilityScan and deleteTag components#4940
Open
WashingtonKK wants to merge 6 commits into
Open
feat: add docker hub onVulnerabilityScan and deleteTag components#4940WashingtonKK wants to merge 6 commits into
WashingtonKK wants to merge 6 commits into
Conversation
Adds a new trigger that fires when Docker Scout completes a vulnerability scan for a DockerHub repository. Supports optional minimum-severity filtering so pipelines only activate when scans surface CVEs at or above a configured threshold (low / medium / high / critical). Includes backend trigger, webhook handler, severity logic, tests, embedded example data, and frontend renderer with webhook setup UI. Signed-off-by: WashingtonKK <washingtonkigan@gmail.com>
Adds a Delete Tag action that permanently removes a tag from a DockerHub repository via the Hub API. Includes backend action, client method, tests, embedded example output, frontend mapper with execution details, and vitest spec. Also fixes a complexity regression in the On Vulnerability Scan trigger renderer by extracting criticalities formatting to a helper function, and removes an unused formatSeveritySummary function. Regenerates DockerHub component docs. Signed-off-by: WashingtonKK <washingtonkigan@gmail.com>
|
👋 Commands for maintainers:
|
superplane-policy-bot
Bot
requested review from
forestileao,
lucaspin and
shiroyasha
Signed-off-by: WashingtonKK <washingtonkigan@gmail.com>
Updated the formatting of the Docker Scout webhook setup instructions for better readability by adding line breaks to list items and paragraph text. Signed-off-by: WashingtonKK <washingtonkigan@gmail.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Closes: #4935
This expands the docker hub integration by adding the following components:
dockerhub.onVulnerabilityScandocekrhub.deleteTagDemo Video