From 83d6a7bd64773c16720f183c5f70c8cc06b1afb6 Mon Sep 17 00:00:00 2001
From: Wolfgang Hottgenroth <wolfgang.hottgenroth@icloud.com>
Date: Wed, 21 May 2025 22:08:24 +0200
Subject: [PATCH] trivy-operator integration

---
 todo.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/todo.md b/todo.md
index c18b967..0ecdc19 100644
--- a/todo.md
+++ b/todo.md
@@ -3,7 +3,9 @@
     - [ ] DefectDojo - Jira Integration
     - [ ] Monitor SLA expiry on DefectDojo
     - [ ] Workflow for review of assessments in DefectDojo
-    - [ ] Trivy-Deployment in cluster shall be integrated with DefectDojo
+    - [x] Trivy-Deployment in cluster shall be integrated with DefectDojo
+      - [Import Trivy Operator reports into DefectDojo](https://medium.com/@alexander.murylev/implementing-centralized-security-scanning-across-multiple-kubernetes-clusters-with-trivy-and-989f3d5b0f4a)
+      - [Trivy Dojo Report Operator by Telekom](https://github.com/telekom-mms/trivy-dojo-report-operator)
   - Thomas O.
     - [ ] DefectDojo and/or DependencyTrack shall notify via mail in case of new vulnerabilities
     - [x] add switch to glue logic to disable integrated SBOM generator and read externally