aquasecurity trivy · Discussions · GitHub

Share with us your favourite part about Trivy
Adopters AnaisUrlichs

Sort by: Latest activity

Discussions

You must be logged in to vote

Regression: False positives on aws_s3_bucket with dynamic resources (Trivy v0.65.0)
kind/bug Categorizes issue or PR as related to a bug.
bokyung-kang started Sep 1, 2025 in Bugs · Closed

2
You must be logged in to vote

Prepare for v0.66.0

simar7 started Aug 28, 2025 in Development · Closed

0
You must be logged in to vote

SBOM container tools comparison

jakub-bochenski started Sep 2, 2025 in Adopters

0
You must be logged in to vote

Invalid cyclonedx sbom is generated for elasticsearch:8.17.10
kind/bug Categorizes issue or PR as related to a bug.
jakub-bochenski started Aug 29, 2025 in Bugs · Closed

2
You must be logged in to vote

Error while SBOM's parsing of MetadataComponent when JSON generated by syft
kind/bug Categorizes issue or PR as related to a bug.
bedla started Aug 22, 2025 in Bugs · Closed

1
You must be logged in to vote

Invalid cyclonedx sbom is generated for tykio/tyk-gateway:v5.8
kind/bug Categorizes issue or PR as related to a bug.
jakub-bochenski started Aug 29, 2025 in Bugs · Closed

1
You must be logged in to vote

Invalid cyclonedx sbom is generated for dependencytrack/apiserver:4.13.4
kind/bug Categorizes issue or PR as related to a bug.
jakub-bochenski started Aug 29, 2025 in Bugs · Closed

1
You must be logged in to vote

Add support for pylock.toml (PEP 751)
kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning target/filesystem Issues relating to filesystem scanning
jiridanek started Aug 29, 2025 in Ideas · Closed

3
You must be logged in to vote

Nested dependencies trying to use insecure http URLs? #485
kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning target/filesystem Issues relating to filesystem scanning
vazkarvishal started Aug 29, 2025 in Ideas

0
You must be logged in to vote

BREAKING: Deprecating avd_id and short_code for misconfiguration checks
kind/deprecation Categorizes issue or PR as related to a feature/enhancement marked for deprecation.
simar7 announced Jun 2, 2025 in Announcements

0
You must be logged in to vote

CSV Vulnerability Template - Need to sort on severity
kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning target/container-image Issues relating to container image scanning
wagner-robert asked Aug 28, 2025 in Q&A · Unanswered

0
You must be logged in to vote

Allow specification of SBOM product purl during scan
kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning
lucastheisen started Aug 25, 2025 in Ideas · Closed

1
You must be logged in to vote

terraform module ${path.module} panic
kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
alyvusal started Aug 28, 2025 in Bugs · Closed

2
You must be logged in to vote

trivy.db not downloaded although file not there
kind/bug Categorizes issue or PR as related to a bug.
tom1299 started Aug 21, 2025 in Bugs

6
You must be logged in to vote

distro alma/10 (newest release) does not deliver rpm findings
kind/feature Categorizes issue or PR as related to a new feature.
rriemann started Jul 13, 2025 in Ideas · Closed

25
You must be logged in to vote

Detect local platform when scanning image from remote source
kind/feature Categorizes issue or PR as related to a new feature. target/container-image Issues relating to container image scanning
itaysk started Aug 20, 2025 in Ideas

1
You must be logged in to vote

When resolving Terraform modules from registry, Trivy does not utilize remote service discovery
kind/feature Categorizes issue or PR as related to a new feature.
marcinbelczewski started Nov 21, 2024 in Ideas

10
You must be logged in to vote

License text classification doesn't work as expected
triage/support Indicates an issue that is a support question. scan/license Issues relating to license scanning
parrot55 asked Aug 27, 2025 in Q&A · Unanswered

1
You must be logged in to vote

Since 0.65.0, repository credentials are leaked in RepoURL metadata of JSON report
kind/bug Categorizes issue or PR as related to a bug.
pdecat started Aug 18, 2025 in Bugs · Closed

2
You must be logged in to vote

the command "trivy k8s --report all --compliance k8s-cis-1.23 --format table" doesn't show the output
kind/bug Categorizes issue or PR as related to a bug.
fjvela started Aug 21, 2025 in Bugs · Closed

4
You must be logged in to vote

Centralised usage of .trivyignore file for composite github actions
kind/feature Categorizes issue or PR as related to a new feature. scan/misconfiguration Issues relating to misconfiguration scanning target/repository Issues relating to VCS repository scanning
beaglemarauder started Aug 19, 2025 in Ideas

1
You must be logged in to vote

Warn about sensitive data in environment variables that aren't in Kubernetes secrets
kind/feature Categorizes issue or PR as related to a new feature. scan/misconfiguration Issues relating to misconfiguration scanning target/kubernetes Issues relating to kubernetes cluster scanning
atombrella started Aug 19, 2025 in Ideas · Closed

6
You must be logged in to vote

jdom license classification not correct
kind/bug Categorizes issue or PR as related to a bug.
KrzysztofKlubek started Aug 22, 2025 in Bugs · Closed

2
You must be logged in to vote

OEPKGS adopter

IceT6 started Aug 25, 2025 in Adopters

0
You must be logged in to vote

License object sometimes has "id" sometimes "name" when SBOM is created with version 0.65.0
kind/bug Categorizes issue or PR as related to a bug.
moyscode started Aug 13, 2025 in Bugs · Closed

5