The Harbor Trivy needs to access GitHub APIs to retrieve vulnerability information associated with the container images stored in Harbor. GitHub APIs have rate limits (60 requests per hour) for unauthenticated requests. By using a gitHubToken, you can increase the rate limit for API requests, allowing Trivy to make more requests without hitting rate limits.
Note: This procedure is applicable only for Harbor CNFs deployed in a non-airgap or internet-accessible environment.
Harbor CNF Reconfigure can be used to configure gitHubToken by passing the following properties as part of values.yaml.
trivy:
gitHubToken: <token>
Note:
You can create a GitHub token by following the instructions provided in Managing your personal access tokens.
