Docker runtime 19.3.0 and trivy issue?

djvassil · July 8, 2022, 10:02am

I get a fatal error when scanning some images (e.g nginx:latest or k8s.gcr.io/kube-apiserver:v1.23.0) with Trivy (latest v0.29.2) in the K8s multi-node playground (see attachment).

I suspect this might be due to the docker container runtime running in the playground, as i get no error when scanning the same image with containerd v1.5.9.

However, scanning nginx:1.19.2 works fine !

Can you please have a look and share your thoughts?

Thanks

Alistair_KodeKloud · July 15, 2022, 1:47pm

Hi @djvassil

I was able to get it to scan nginx:latest with trivy 0.30.0, however not kube-apiserver.
I’ll ask the engineering team to have a look at your suggestion. After all docker runtime support for k8s stops with 1.24

Alistair_KodeKloud · July 15, 2022, 5:15pm

Thanks for the feedback. The engineering team will look into it.