diff --git a/docs/ecosystem/cicd.md b/docs/ecosystem/cicd.md index 301902cee68b..12d050cd6b0e 100644 --- a/docs/ecosystem/cicd.md +++ b/docs/ecosystem/cicd.md @@ -1,5 +1,12 @@ # CI/CD Integrations +## Azure DevOps (Official) +[Azure Devops](https://azure.microsoft.com/en-us/products/devops/#overview) is Microsoft Azure cloud native CI/CD service. + +Trivy has a "Azure Devops Pipelines Task" for Trivy, that lets you easily introduce security scanning into your workflow, with an integrated Azure Devops UI. + +👉 Get it at: + ## GitHub Actions [GitHub Actions](https://github.com/features/actions) is GitHub's native CI/CD and job orchestration service. @@ -9,13 +16,6 @@ GitHub Action for integrating Trivy into your GitHub pipeline 👉 Get it at: -## Azure DevOps (Official) -[Azure Devops](https://azure.microsoft.com/en-us/products/devops/#overview) is Microsoft Azure cloud native CI/CD service. - -Trivy has a "Azure Devops Pipelines Task" for Trivy, that lets you easily introduce security scanning into your workflow, with an integrated Azure Devops UI. - -👉 Get it at: - ### trivy-action (Community) GitHub Action to scan vulnerability using Trivy. If vulnerabilities are found by Trivy, it creates a GitHub Issue. @@ -28,12 +28,20 @@ In this action, Trivy scans the dependency files such as package-lock.json and g 👉 Get it at: -### Buildkite Plugin (Community) +## Buildkite Plugin (Community) The trivy buildkite plugin provides a convenient mechanism for running the open-source trivy static analysis tool on your project. 👉 Get it at: https://github.com/equinixmetal-buildkite/trivy-buildkite-plugin +## Dagger (Community) +[Dagger](https://dagger.io/) is CI/CD as code that runs anywhere. + +The Dagger module for Trivy provides functions for scanning container images from registries as well as Dagger Container objects from any Dagger SDK (e.g. Go, Python, Node.js, etc). + +👉 Get it at: + + ## Semaphore (Community) [Semaphore](https://semaphoreci.com/) is a CI/CD service.