Update AutoDiscovery documentation

BorisShek · J12934 · commit e8310d191c92 · 2025-02-28T18:14:37.000+01:00
Add information indicating that the `trivy-image-autodiscovery` ScanType
is required for Container AutoDiscovery to function.
Make it clear that
Container AutoDiscovery is disabled by default and must be enabled
manually.
Correct a minor grammar issue in the Service AutoDiscovery
documentation.

Signed-off-by: Boris Shek &lt;boris.shek@iteratec.com&gt;
diff --git a/documentation/docs/auto-discovery/container-auto-discovery.md b/documentation/docs/auto-discovery/container-auto-discovery.md
@@ -9,7 +9,7 @@ path: "docs/auto-discovery/container-auto-discovery"
 sidebar_position: 3
 ---
 
-The Container AutoDiscovery will create a scheduled scan with the given parameters (see [readme](https://github.com/secureCodeBox/secureCodeBox/blob/main/auto-discovery/kubernetes/README.md) for config options) for each unique container image in a Kubernetes namespace. Currently it is only possible to scan public container images.
+The Container AutoDiscovery will create a `ScheduledScan` with the given parameters (see [readme](https://github.com/secureCodeBox/secureCodeBox/blob/main/auto-discovery/kubernetes/README.md) for config options) for each unique container image in a Kubernetes namespace. Currently it is only possible to scan public container images.
 It is currently disabled by default and must be enabled manually.
 
 Assume that a namespace contains two pods that run a `nginx v1.5` container. The Container AutoDiscovery will only create a single scheduled scan for the _nginx_ containers, as both are identical.
@@ -22,15 +22,15 @@ If a pod consists of multiple containers, the above described logic will be appl
 
 ### Setup
 
-[Trivy](/docs/scanners/trivy) is a container image scanner that is used by the Container AutoDiscovery. It has to be installed in the same namespace as the containers that you wish to scan. The following steps will install trivy in the `default` namespace:
+[Trivy](/docs/scanners/trivy) is a container image scanner that is used by the Container AutoDiscovery. It must be installed in the same namespace as the containers you wish to scan. It also uses a special `ScanType` called `trivy-image-autodiscovery` that should be set manually by installing. The following steps will install `Trivy` with the corresponding `ScanType` in the `default` namespace:
 ```bash
-helm upgrade --install trivy oci://ghcr.io/securecodebox/helm/trivy
+helm upgrade --install trivy oci://ghcr.io/securecodebox/helm/trivy --set createAutoDiscoveryScanType=true
 ```
 
-#### Deactivation
+#### Activation
 
-The Container AutoDiscovery is enabled by default but can be disabled manually.
+The Container AutoDiscovery is disabled by default and must be enabled manually.
 
 ```bash
-helm upgrade --namespace securecodebox-system --install auto-discovery-kubernetes oci://ghcr.io/securecodebox/helm/auto-discovery-kubernetes --set config.containerAutoDiscovery.enabled=false
+helm upgrade --namespace securecodebox-system --install auto-discovery-kubernetes oci://ghcr.io/securecodebox/helm/auto-discovery-kubernetes --set config.containerAutoDiscovery.enabled=true
 ```
diff --git a/documentation/docs/auto-discovery/service-auto-discovery.md b/documentation/docs/auto-discovery/service-auto-discovery.md
@@ -18,7 +18,7 @@ By default the Service AutoDiscovery creates [ZAP Advanced](../scanners/zap-adva
 
 ### Setup
 
-By default the Service AutoDiscovery creates ScheduledScans using the [ZAP Advanced](/docs/scanners/zap-advanced) ScanType. It has to be installed in the same namespace as the containers that you wish to scan. The following steps will install zap-advanced in the `default` namespace:
+By default the Service AutoDiscovery creates ScheduledScans using the [ZAP Advanced](/docs/scanners/zap-advanced) `ScanType`. It must be installed in the same namespace as the containers you wish to scan. The following steps will install `zap-advanced` in the `default` namespace:
 
 ```bash
 helm upgrade --install zap-advanced oci://ghcr.io/securecodebox/helm/zap-advanced
