Skip to content

(v1.4.1 hotfix) Fix multi-arch container image scanning #136

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 15 commits into from
Sep 23, 2025
Merged

(v1.4.1 hotfix) Fix multi-arch container image scanning #136

merged 15 commits into from
Sep 23, 2025

Conversation

bluesentinelsec
Copy link
Contributor

@bluesentinelsec bluesentinelsec commented Sep 22, 2025
edited
Loading

🐛 Problem

This PR resolves an issue (#101) in which the Inspector Action does not honor the platform argument when inventorying/scanning container images.

🔧 Solution

Updated action.yml which now correctly applied platform when scanning container images.

📋 Testing

Added comprehensive testing to prevent this issue from recurring:

  • ✅ 8 multi-arch platforms tested in CI/CD matrix
  • ✅ SBOM architecture validation passes
  • ✅ Backward compatible (empty platform defaults to host arch)

  1. Multi-platform matrix testing: Tests 8 CPU architectures:

    1. linux/386
    2. linux/amd64
    3. linux/arm/v5
    4. linux/arm/v7
    5. linux/arm64/v8
    6. linux/ppc64le
    7. linux/riscv64
    8. linux/s390x

  2. Multi-arch SBOM validation: New script validate_multi_platform_image_support.py validates that the generated SBOM contains the expected architecture, catching silent failures, and failing if platform handling receives breaking changes.

@bluesentinelsec bluesentinelsec merged commit 84aa760 into v1.4.0 Sep 23, 2025
21 checks passed
@bluesentinelsec bluesentinelsec deleted the investigate_multi_arch branch September 23, 2025 18:20
@bluesentinelsec bluesentinelsec restored the investigate_multi_arch branch September 23, 2025 18:22
bluesentinelsec added a commit that referenced this pull request Sep 23, 2025
@bluesentinelsec
Revert "(v1.4.1 hotfix) Fix multi-arch container image scanning (#136)"
76a908c 
This reverts commit 84aa760.
@bluesentinelsec bluesentinelsec mentioned this pull request Sep 23, 2025
Merged
bluesentinelsec added a commit that referenced this pull request Sep 23, 2025
@bluesentinelsec
Revert "(v1.4.1 hotfix) Fix multi-arch container image scanning (#136)…
3cb6bd0 
…" (#137)

This reverts commit 84aa760.
@bluesentinelsec bluesentinelsec deleted the investigate_multi_arch branch September 23, 2025 18:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@s-kenji s-kenji s-kenji left review comments

@cjbaco cjbaco Awaiting requested review from cjbaco

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@bluesentinelsec @s-kenji