Chapter 5. Trivy Operator

Why this step

You already produce local artifacts in ./artifacts/. The operator gives you a cluster view of risks as Kubernetes resources.

Install

Follow the operator’s installation instructions (via Helm or manifests). On a successful install you can query:

kubectl get ns        # confirm operator namespace
kubectl get vulnerabilityreports -A
kubectl get configauditreports -A

Evidence (optional)

Save a quick dump:

kubectl get vulnerabilityreports -A -o wide > artifacts/operator-vulnreports.txt
kubectl get configauditreports -A -o wide > artifacts/operator-configaudit.txt

Cleanup

Uninstall using the same method you installed with (helm uninstall or kubectl delete).

Checklist

Operator installed and CRDs visible
Export of reports saved under artifacts/ (optional)
Uninstall instructions verified

© 2025 Ask AppSec.