reddit hackernews mail facebook facebook linkedin


Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, repositories...

Trivy is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues.

Targets (what Trivy can scan):
- Container Image
- Filesystem
- Git repository
- Virtual Machine Image
- Kubernetes

Scanners (what Trivy can find there):
- OS packages and software dependencies in use (SBOM)
- Known vulnerabilities (CVEs)
- IaC issues and misconfigurations
- Sensitive information and secrets
- Software licenses

Trivy supports most popular programming languages, operating systems, and platforms.