Trivy

Jan 1, 0001

Definition

Trivy is an open-source vulnerability scanner designed to identify security issues in container images, file systems, and Git repositories. It detects vulnerabilities in operating system packages and application dependencies, providing detailed information about the severity and potential impact of each issue. Trivy is widely used in DevSecOps pipelines to ensure that containerized applications are secure before deployment.

Secure Settings Example

# Scan a Docker image with Trivy and output results in JSON format
trivy image --severity HIGH,CRITICAL --format json myapp:latest

Insecure Settings Example

# Scan a Docker image without specifying severity levels, potentially missing critical issues
trivy image myapp:latest

Trivy

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter