Trivy

Vulnerability Scanning

Trivy is a comprehensive security scanner that detects vulnerabilities, misconfigurations, secrets, and licenses across container images, file systems, Git repos, VMs, and Kubernetes clusters.

Track releases GitHub Website

Go Latest v0.71.0 · 2d ago Security brief →

Features

Scans container images for OS package vulnerabilities and SBOMs
Audits filesystems for secrets, misconfigurations, and license information
Analyzes Git repositories (remote) for IaC issues and vulnerable dependencies
Evaluates virtual machine images for CVEs and compliance problems
Inspects Kubernetes resources for security misconfigurations

Recent releases

View all 4 releases →

No releases yet

We'll surface new releases as they're published — check back soon.

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per month

Cadence 0.2 / wk

Last release 2d

Churn +7033 / −8377 lines · 300 files · 65 commits

Tracked 4

Security

Full profile →

Security score 6.6/10

OpenSSF 6.4/10

Open CVEs 0

SECURITY.md Active maintainer

Community

GitHub stars 35,270

Forks 406

Open issues 238

Open PRs 77

Stars/wk velocity 0.0

HN peak 102

About

Stars

35,270

Forks

406

Languages

Go Go Template Shell

View on GitHub Homepage Documentation

Install & Platforms

Install via

brew docker binary

Community & Support

Community

Alternative to

Aqua

Similar tools

Checkov

grype

helm

Tanstack Compromise Checker

squid-protocol/gitgalaxy](https:

About

Stars

35,270

Forks

406

Languages

Go Go Template Shell

View on GitHub Homepage Documentation

Install & Platforms

Install via

brew docker binary

Community & Support

Community

Similar tools

Checkov

grype

helm

Tanstack Compromise Checker

squid-protocol/gitgalaxy](https:

Alternative to

Aqua