Sysdig’s Integrations for GitHub

About GitHub

GitHub CI/CD is an open source continuous integration and delivery server used by millions of developers. Now part of Microsoft, GitHub is a close ecosystem partner for Sysdig.

Sysdig Secure for scanning images in CI/CD pipelines with GitHub

Scan images in your GitHub Actions pipelines to detect and block container vulnerabilities pre-production.

Our workflow will build our code into a Docker image, then it will locally scan the image using the Sysdig Secure Inline Scan action. The scan results will then be sent to Sysdig. If the scan fails, the workflow breaks, preventing the image from being uploaded into a registry.

A commit triggers a github action workflow that builds, scans, and sends the scan results to sysdig secure.

Now it is easy and straightforward to include Sysdig Secure Inline Scan in your workflow, scanning images for vulnerabilities and enforcing best practices at build time. 

Sysdig Secure for scanning IaC with GitHub

Sysdig is introducing Git Integrations as part of its Infrastructure as Code (IaC) solution. At this time, the integrations can be used to scan incoming Pull Requests (PRs) for security violations based on predefined policies. The results of the scanning evaluation are presented in the PR itself. If passed, the user can merge; if failed the user cannot merge. Information provided in the PR also targets the problem area to assist the user in remediation.

Read More

Check out our documentation to learn more and get started.