Vendored analyzers/report/v3 dependency
What does this MR do?
- Introduces
analyzers/report
with all the dependencies that are required bytrivy-k8s-wrapper
and thegitlab agent
.
Why are we doing this?
We want to reduce the number of dependencies introduced by the trivy-k8s-wrapper
when we introduce it as a dependency in the Gitlab-Agent
. We. have measured that by removing gitlab.com/gitlab-org/security-products/analyzers/report/v3
and vendoring the parts that are required in the codebase we reduce the number of dependencies introduced significantly.
What are the relevant issue numbers?
Edited by Nick Ilieskou