Skip to content

[GitHub Trending] aquasecurity/trivy

7.7 relevance
Score Breakdown
technical depth
8
novelty
6
actionability
9
community
8
strategic
7
personal
8

Scored daily by a customisable AI persona to surface the most relevant engineering leadership news.

Trivy is a top security scanner for containers and cloud; highly actionable for observability and platform engineering.

Cloud github.com
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more - aquasecurity/trivy
Summary

Trivy is an open-source security scanner from Aqua Security that scans container images, filesystems, Git repos, VM images, and Kubernetes for vulnerabilities, IaC misconfigurations, secrets, and software licenses. It supports most programming languages and integrates with GitHub Actions, Kubernetes operators, and VS Code via plugins. The tool outputs SBOMs and CVE data, with canary builds available from Docker Hub, GitHub, and ECR.

Author

aquasecurity