Make Trivy the default container scanning analyzer

Why are we doing this work

Klar was deprecated and is being removed in %14.0. The new container-scanning analyzer replaces it.

This issue executes on this.

Relevant links

Non-functional requirements

  • Documentation:
  • Feature flag:
  • Performance:
  • Testing:

Implementation plan

  • Update Container-Scanning.gitlab-ci.yml
    1. Rewrite CS_ANALYZER_IMAGE in .cs_common to stop using SECURE_ANALYZERS_PREFIX and CS_MAJOR_VERSION.
    2. Remove SECURE_ANALYZERS_PREFIX and CS_MAJOR_VERSION
    3. Remove container_scanning
    4. Rename container_scanning_new to container_scanning
    5. Amend rules in container_scanning to remove check for CS_MAJOR_VERSION.
  • Remove mentions to Klar/Clair from documentation
Edited by Thiago Figueiró