GitHub - aquasecurity/trivy: Find vulnerabilities, misconfigurations ...
Trivy (pronunciation) is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues. Targets (what Trivy can scan): Container Image; Filesystem; Git Repository (remote) Virtual Machine Image; Kubernetes; Scanners (what Trivy can find there):
Releases · aquasecurity/trivy - GitHub
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more - aquasecurity/trivy
trivy/README.md at main · aquasecurity/trivy - GitHub
Trivy (pronunciation) is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues. Targets (what Trivy can scan): Container Image; Filesystem; Git Repository (remote) Virtual Machine Image; Kubernetes; Scanners (what Trivy can find there):
GitHub - aquasecurity/trivy-action: Runs Trivy as GitHub action to …
This can be handy if you want to run Trivy as a build time check on each PR that gets opened in your repo. This helps you identify potential vulnerablites that might get introduced with each PR. If you have GitHub code scanning available you can use Trivy as a scanning tool as follows:
GitHub - aquasecurity/tfsec: Tfsec is now part of Trivy
Over the past year, tfsec has laid the foundations to Trivy's IaC & misconfigurations scanning capabilities, including Terraform scanning, which has been natively supported in Trivy for a long time now.
aquasecurity/trivy-operator: Kubernetes-native security toolkit
The Trivy Operator leverages Trivy to continuously scan your Kubernetes cluster for security issues. The scans are summarised in security reports as Kubernetes Custom Resource Definitions , which become accessible through the Kubernetes API.
trivy/docs/getting-started/installation.md at main - GitHub
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more - aquasecurity/trivy
GitHub - aquasecurity/trivy-enterprise: Find vulnerabilities ...
Trivy (pronunciation) is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues. Targets (what Trivy can scan): Container Image; Filesystem; Git Repository (remote) Virtual Machine Image; Kubernetes; Scanners (what Trivy can find there):
Aqua Security Trivy · Actions · GitHub Marketplace · GitHub
It's also possible to scan your git repos with Trivy's built-in repo scan. This can be handy if you want to run Trivy as a build time check on each PR that gets opened in your repo. This helps you identify potential vulnerablites that might get introduced with each PR.
Trivy update fails · aquasecurity trivy · Discussion #7538 - GitHub
Question Hello, recently trivy is having issues updating the database before scanning container images. To isolate the problem, I have introduced a separate update task which runs the update-only c...