trivy.yaml

# Trivy config — Лидерра (#26)
# Активировать в Sprint 7 после настройки Docker pipeline в YC.
# Docs: https://aquasecurity.github.io/trivy/latest/docs/configuration/

exit-code: 1
severity: CRITICAL,HIGH
format: sarif
output: trivy-results.sarif
ignore-unfixed: true

vulnerability:
  type:
    - os
    - library
feat(tooling): Trivy CI workflow prep — disabled until YC Docker (#26 ) 2026-05-10 08:45:17 +03:00			`# Trivy config — Лидерра (#26)`
			`# Активировать в Sprint 7 после настройки Docker pipeline в YC.`
			`# Docs: https://aquasecurity.github.io/trivy/latest/docs/configuration/`

			`exit-code: 1`
			`severity: CRITICAL,HIGH`
			`format: sarif`
			`output: trivy-results.sarif`
			`ignore-unfixed: true`

			`vulnerability:`
			`type:`
			`- os`
			`- library`