trivy
https://github.com/aquasecurity/trivy
Go
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Go not yet supported3 Subscribers
Add a CodeTriage badge to trivy
Help out
- Issues
- feat(slemicro): Add support for the SUSE Linux Enterprise Micro family
- feat: enhance secret scanning for specific binary files
- feat: add an option to skip the files greater than a particular size
- feat(misconf): Filtering findings for Terraform modules based on attributes
- fix(sbom): detect OS from `purl` if OS component not found
- fix(sbom): detect OS from `purl` if OS component not found
- feat(misconf): Improve logging experience when `--ignorefile` not found
- List of Google Cloud Platform (GCP) Permissions required to run Trivy for kubernetes security scanning
- fix(misconf): allow frameworks without versions
- test(checks): Add automated bundle testing in pipeline
- Docs
- Go not yet supported