Provide multi-architecture images for Sec analyzers
Topic to Evaluate
The analyzer images provided by sectionsec are all based on the amd64/x86_64 architecture.
Users may want to use other architectures such as arm64.
This issue is to investigate ways to provide images for other architectures. For example, with Docker one can Leverage multi-CPU architecture support.
For now, we have documented the requirement:
- Document Container, Cluster scanning required a... (!82862 - merged)
- Document IaC Scanning required architecture (!82861 - merged)
- Document Secret Detection required architecture (!82860 - merged)
- Document SAST required architecture (!82856 - merged)
- Document Dependency Scanning required architecture (!82859 - merged)
- Document DAST required architecture (!82857 - merged)
Tasks prior to evaluation
-
Clearly document the topic to evaluated in this issue description -
Determine specific scope including time-bounds for investigation
Tasks to Evaluate
-
Determine feasibility of the feature -
Create issue for implementation or update existing implementation issue description with implementation proposal -
Set weight on implementation issue -
If weight is greater than 5, break issue into smaller issues -
Add task -
Add task
Risks and Implementation Considerations
Team
-
Add workflowplanning breakdown typefeature and the corresponding ~devops::<stage>and~group::<group>labels. -
Ping the PM and EM.
/cc @plafoucriere
Edited by Thiago Figueiró