{"id":18581897,"url":"https://github.com/coder/coder-xray","last_synced_at":"2025-04-10T11:35:38.478Z","repository":{"id":222525324,"uuid":"745651899","full_name":"coder/coder-xray","owner":"coder","description":"JFrog XRay Integration","archived":false,"fork":false,"pushed_at":"2025-03-22T11:34:36.000Z","size":621,"stargazers_count":5,"open_issues_count":1,"forks_count":1,"subscribers_count":3,"default_branch":"main","last_synced_at":"2025-03-22T12:26:11.314Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"agpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/coder.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-01-19T19:51:58.000Z","updated_at":"2025-03-22T11:34:33.000Z","dependencies_parsed_at":"2024-02-14T18:47:57.518Z","dependency_job_id":"840abb11-960a-4dba-b254-bb8f48331540","html_url":"https://github.com/coder/coder-xray","commit_stats":null,"previous_names":["coder/coder-xray"],"tags_count":14,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coder%2Fcoder-xray","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coder%2Fcoder-xray/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coder%2Fcoder-xray/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coder%2Fcoder-xray/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/coder","download_url":"https://codeload.github.com/coder/coder-xray/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248208688,"owners_count":21065205,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-07T00:08:11.332Z","updated_at":"2025-04-10T11:35:33.461Z","avatar_url":"https://github.com/coder.png","language":"Go","readme":"# coder-xray\n\n[![release](https://img.shields.io/github/v/tag/coder/coder-xray)](https://github.com/coder/coder-xray/pkgs/container/coder-xray)\n[![license](https://img.shields.io/github/license/coder/coder-xray)](./LICENSE)\n\n- Query Artifactory for image vulnerability on workspace startup.\n- Inform users when they are using a vulnerable image.\n\n![Example](./scripts/example.png)\n\n## Usage\n\nApply the Helm chart to start monitoring workspaces:\n\n```console\nhelm repo add coder-xray https://helm.coder.com/coder-xray\n    --namespace coder \\\nhelm install coder-xray coder-xray/coder-xray \\\n\t--set coder.url=\"https://\u003cyour-coder-url\u003e\" \\\n\t--set coder.secretName=\"\u003cyour coder token secret\u003e\" \\\n\t--set artifactory.url=\"https://\u003cyour-artifactory-url\u003e\" \\\n\t--set artifactory.secretName=\"\u003cyour artifactory secret\u003e\"\n```\n\nFor a detailed step by step guide, see the [scanning coder workspaces with xray](https://coder.com/docs/guides/xray-integration) guide.\n\n\u003e **Note**\n\u003e For additional customization (such as customizing the image, details on creating a secret, etc.), you can use the\n\u003e [values.yaml](https://github.com/coder/coder-xray/blob/main/helm/values.yaml) file directly.\n\n### Requirements:\n\nIn order to use this service the following is required:\n\n- A Coder API token with _at least_ Template Admin privileges\n- An Artifactory token\n\n## How?\n\nKubernetes provides an [informers](https://pkg.go.dev/k8s.io/client-go/informers) API that streams pod and event data from the API server.\n\n`coder-xray` listens for pod creation events with containers that have the `CODER_AGENT_TOKEN` environment\nvariable set. All matching pods/containers are then queried against the provided Artifactory instance and\nany XRay results are then pushed to the provided Coder deployment. \n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcoder%2Fcoder-xray","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcoder%2Fcoder-xray","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcoder%2Fcoder-xray/lists"}