CircleCI scanning 📏
over 1 year ago by Taylor Smith
Bridgecrew now scans CircleCI for misconfigurations from both Checkov and the platform. If public images are found in the configuration file, Bridgecrew will pull that image and scan it for vulnerabilities. The findings include checking that images use proper tags and avoiding the use of unstable Orbs.