SUSE® Security

    • SUSE® Security Overview
    • Understanding SUSE® Security
      • System Requirements
      • Deployment Preparation
      • CI/CD Workflow
      • Security Policy Model
      • Modes: Discover, Monitor, Protect
      • Multi-Cluster Architecture
    • Deploy SUSE® Security
      • Production Deployment
      • Deploy Using ConfigMap
      • Deploy Using Operators
      • Kubernetes
      • OpenShift
      • Rancher
      • Public Cloud
        • AWS Marketplace
      • Amazon ECS
      • Docker
      • Air-Gapped Deployment
      • Upgrade and Update
      • Evaluation and Testing
      • Deployment Troubleshooting
    • Operate and Administer
      • Users and Roles
      • Backup and Restore
      • Remove or Reset
      • Certificates and TLS
        • Replacing Internal Certificates
        • Replacing Self-Signed Certificates
        • Rotating Certificates
        • Browser Trust Configuration
      • Manager and REST API Access
      • Automation with REST API
    • SUSE® Security Interface
      • Navigating the Console
      • Reporting and Notifications
      • Customizing the UI
    • Security Policy Management
      • Admission Control
        • Admission Controls
        • Sigstore and Cosign Verification
        • OCI Image Signing
        • Kubernetes Configuration Assessment
      • Groups
      • Network Rules
      • Process Profile Rules
      • File Access Rules
      • Response Rules
      • DLP and WAF Sensors
      • Network Threat Signatures
      • Custom Compliance Checks
      • Federated Policy
      • Custom Resource Definitions
        • Using CRDs
          • Importing CRDs
      • Namespace Boundary Enforcement
      • Bandwidth and DDoS Detection
    • Vulnerability, Scanning, and Compliance
      • Scanning Overview
      • Vulnerability Management
      • Compliance and CIS Benchmarks
      • Registry Scanning
        • Configuration
        • Harbor Scanner Integration
        • ECR with IAM Roles
        • GCR with Service Accounts
      • Build-Time Image Scanning
        • Local Scanning
        • Jenkins
        • Bamboo
        • CircleCI
        • Azure DevOps
        • GitLab
        • GitHub
      • Improving Security Risk Score
      • CVE Sources and Versions
      • Updating CVE Databases
      • Parallel and Standalone Scanners
    • Enterprise Integrations
      • Identity and Access
        • LDAP
        • Microsoft AD
        • SAML
        • SAML (Azure AD)
        • SAML (ADFS)
        • OpenID Connect
        • OIDC for ADFS
        • Rancher RBAC Integration
      • SIEM and Ecosystem
        • IBM Security Advisor
        • IBM QRadar
        • Splunk
    • Special Deployment Models
      • All-in-One Guidelines
      • Docker Swarm
    • UI Extensions
      • Dashboard
      • Runtime Security
      • Notifications
    • Reference
      • Environment Variables
      • Command Line Reference
    • Release Notes
      • 5.x Release Notes
      • 4.x Release Notes
      • Integrations and Components
    • Security Advisories
      • Security Advisories and CVEs
SUSE® Security 5.4
  • Admission Controller
    • 1.32-dev
    • 1.31-latest
    • 1.30
    • 1.29
    • 1.28
  • Cluster API
    • 0.25
    • 0.24
    • 0.23
    • 0.22
    • 0.21
    • 0.20
    • 0.19
    • 0.18
    • 0.17
    • 0.16
    • 0.15
    • 0.14
    • 0.13
    • 0.12
    • 0.11
  • Continuous Delivery
    • 0.14
    • 0.13
    • 0.12
    • 0.11
    • 0.10
    • 0.9
  • K3s
    • Latest
  • OS Manager
    • 1.9-dev
    • 1.8
    • 1.7
    • 1.6
    • 1.5
  • RKE2
    • Latest
  • SUSE Observability
    • Latest
  • SUSE® Rancher for AWS
    • Latest
  • SUSE® Rancher Manager
    • v2.13
    • v2.12
    • v2.11
    • v2.10
    • v2.9
    • v2.8
  • SUSE® Security
    • 5.4
    • 5.3
  • SUSE® Storage
    • 1.11 (Dev)
    • 1.10 (Latest)
    • 1.9
    • 1.8
  • SUSE® Virtual Clusters
    • 1.0.2-dev
    • v1.0.1-latest
    • v1.0.0
  • SUSE® Virtualization
    • v1.7 (Dev)
    • v1.6 (Latest)
    • v1.5
  • SUSE Security
  • Vulnerability, Scanning, and Compliance
5.4 5.3
Edit

GitHub

Scan for Vulnerabilities in a GitHub Action Pipeline

The SUSE® Security scanner can be triggered from a GitHub Action pipeline by using the SUSE® Security Vulnerability Scan Action published in the GitHub Action Marketplace.

GithubAction

GitLab Improving Security Risk Score