Option to Fail When No Language-Specific Files Are Detected #9514

Varorbc · 2025-09-23T13:17:46Z

Varorbc
Sep 23, 2025

Description

origin issue : #192

Is there currently an option to make Trivy fail (non-zero exit code) when scanning a repository but no language-specific files are detected (Number of language-specific files: num=0)?

If not, could you consider adding a flag like --fail-on-no-files? This would be extremely valuable in CI/CD pipelines where "successful" scans that didn't actually analyze any dependency files could create false security assurances.

This would prevent silent failures when:

Scan paths are incorrect
Dependency files are missing
Cache issues cause files to be skipped

Target

Git Repository

Scanner

Vulnerability

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Option to Fail When No Language-Specific Files Are Detected #9514

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Replies: 0 comments

Select a reply

Uh oh!

Option to Fail When No Language-Specific Files Are Detected #9514

Uh oh!

Uh oh!

Varorbc Sep 23, 2025

Description

Target

Scanner

Replies: 0 comments

Varorbc
Sep 23, 2025