Replies: 1 comment 6 replies
-
Hi @meetveera! All of those look like keys used for automated tests of those dependencies. Unfortunately, none of them are optional for Artillery and there's no quick fix we can offer. Not familiar with Aqua scanner, but I presume it has an option to ignore false-positives? |
Beta Was this translation helpful? Give feedback.
6 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I am running Aqua scan of my docker image where I also install artillery. But after the scan I am getting the following results and I am not able to push the image to my registry.
artillery/node_modules/hpagent/test/ssl.key
artillery/node_modules/node-gyp/test/fixtures/server.key
artillery/node_modules/proxy-agent/test/ssl-cert-snakeoil.key
Since we do not have control over packages that gets installed when used the npm command to install artillery. Due to this reason the aqua scans are unsuccessfull as it exposes some of the ssl keys which is not good.
Also some of the dependencies below are showing critical issues during the Aqua scan
/artillery/node_modules/formidable
Beta Was this translation helpful? Give feedback.
All reactions