
Securing GitHub CodeSpaces with Trivy
In this article I show how to create a container for GitHub CodeSpaces for some Azure + Terraform work. Usually, azterraform from Microsoft is my go-to, but in this instance I needed a PowerShell base, and the addition of the GitHub CLI client. Obviously, it has to be built in CI, and let’s add some security love with Trivy too! You can re-use this same process to make your own CodeSpaces container (or any container, for that matter), with the tools that work for your use cases.