diff --git a/api/unversioned/config/config.go b/api/unversioned/config/config.go index f9e04eac94..2ddad4b85c 100644 --- a/api/unversioned/config/config.go +++ b/api/unversioned/config/config.go @@ -16,7 +16,7 @@ dbRepo: ghcr.io/aquasecurity/trivy-db deleteFailedImages: true deleteEOLImages: true vulnerabilities: - ignoreUnfixed: true + ignoreUnfixed: false types: - os - library diff --git a/api/v1alpha1/config/config.go b/api/v1alpha1/config/config.go index cb64795f0c..cc14de0acc 100644 --- a/api/v1alpha1/config/config.go +++ b/api/v1alpha1/config/config.go @@ -15,7 +15,7 @@ dbRepo: ghcr.io/aquasecurity/trivy-db deleteFailedImages: true deleteEOLImages: true vulnerabilities: - ignoreUnfixed: true + ignoreUnfixed: false types: - os - library diff --git a/api/v1alpha2/config/config.go b/api/v1alpha2/config/config.go index bdd7bcf675..a6d2699ca1 100644 --- a/api/v1alpha2/config/config.go +++ b/api/v1alpha2/config/config.go @@ -15,7 +15,7 @@ dbRepo: ghcr.io/aquasecurity/trivy-db deleteFailedImages: true deleteEOLImages: true vulnerabilities: - ignoreUnfixed: true + ignoreUnfixed: false types: - os - library diff --git a/api/v1alpha3/config/config.go b/api/v1alpha3/config/config.go index ae9ea6ce07..9d7c178b56 100644 --- a/api/v1alpha3/config/config.go +++ b/api/v1alpha3/config/config.go @@ -15,7 +15,7 @@ dbRepo: ghcr.io/aquasecurity/trivy-db deleteFailedImages: true deleteEOLImages: true vulnerabilities: - ignoreUnfixed: true + ignoreUnfixed: false types: - os - library diff --git a/config/manager/controller_manager_config.yaml b/config/manager/controller_manager_config.yaml index 031d764b7d..b13aba7b1e 100644 --- a/config/manager/controller_manager_config.yaml +++ b/config/manager/controller_manager_config.yaml @@ -61,7 +61,7 @@ components: deleteFailedImages: true deleteEOLImages: true vulnerabilities: - ignoreUnfixed: true + ignoreUnfixed: false types: - os - library diff --git a/manifest_staging/charts/eraser/values.yaml b/manifest_staging/charts/eraser/values.yaml index 3c09f3da34..78ef93781e 100644 --- a/manifest_staging/charts/eraser/values.yaml +++ b/manifest_staging/charts/eraser/values.yaml @@ -64,7 +64,7 @@ runtimeConfig: # deleteFailedImages: true # deleteEOLImages: true # vulnerabilities: - # ignoreUnfixed: true + # ignoreUnfixed: false # types: # - os # - library diff --git a/manifest_staging/deploy/eraser.yaml b/manifest_staging/deploy/eraser.yaml index 1b1cf2ab2b..172ad94172 100644 --- a/manifest_staging/deploy/eraser.yaml +++ b/manifest_staging/deploy/eraser.yaml @@ -474,7 +474,7 @@ data: deleteFailedImages: true deleteEOLImages: true vulnerabilities: - ignoreUnfixed: true + ignoreUnfixed: false types: - os - library diff --git a/pkg/scanners/trivy/types.go b/pkg/scanners/trivy/types.go index 8894bc5d50..61472484a1 100644 --- a/pkg/scanners/trivy/types.go +++ b/pkg/scanners/trivy/types.go @@ -81,7 +81,7 @@ func DefaultConfig() *Config { DeleteFailedImages: true, DeleteEOLImages: true, Vulnerabilities: VulnConfig{ - IgnoreUnfixed: true, + IgnoreUnfixed: false, Types: []string{ vulnTypeOs, vulnTypeLibrary, diff --git a/third_party/open-policy-agent/gatekeeper/helmify/static/values.yaml b/third_party/open-policy-agent/gatekeeper/helmify/static/values.yaml index 3c09f3da34..78ef93781e 100644 --- a/third_party/open-policy-agent/gatekeeper/helmify/static/values.yaml +++ b/third_party/open-policy-agent/gatekeeper/helmify/static/values.yaml @@ -64,7 +64,7 @@ runtimeConfig: # deleteFailedImages: true # deleteEOLImages: true # vulnerabilities: - # ignoreUnfixed: true + # ignoreUnfixed: false # types: # - os # - library