trivy
https://github.com/aquasecurity/trivy
Go
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Go not yet supported3 Subscribers
Add a CodeTriage badge to trivy
Help out
- Issues
- Envoy misconfiguration scanning
- Trivy "override" database
- Automatically bump trivy's github action
- helm scanning in chart registry
- Add support to scan memory file system
- Show informative timeout messages in k8s scanning
- Trivy warns "failed to get the vulnerability" about a rejected CVE, CVE-2021-20095
- Required docker images for arm64
- Show command of layer id for vulnerabilities
- Support for Arch Linux
- Docs
- Go not yet supported