Trivy

Trivy is the most popular open source security scanner, reliable, fast, and easy to use. Use Trivy to find vulnerabilities & IaC misconfigurations, SBOM discovery, Cloud scanning, Kubernetes security risks,and more. Trivy is praised by professionals from organizations worldwide. Are you a Trivy fan as well? We’d love to hear from you! Trivy detects vulnerabilities from a wide array of operating systems and programming languages, across different versions, and vulnerability sources. Detect common misconfigurations with Trivy, using the same familiar tool and workflow that you already have in place for vulnerabilities. Trivy scans Terraform, CloudFormation, Docker, Kubernetes, and many other IaC configuration files for security issues right alongside vulnerabilities. Trivy IaC is brought to you by the team behind the popular tfsec project. Trivy is a single binary with no dependencies! There’s no database to maintain, no external tools it relies on, no runtime requirements whatsoever.

Features

Easily run everywhere
Infrastructure as Code scanning
Comprehensive Coverage
Versatile to fit your needs
Truly Open Source
Trivy scans local and remote container images

Project Samples

Project Activity

See All Activity >

License

Apache License V2.0

Follow Trivy

Trivy Web Site

Other Useful Business Software

Gemini 3 and 200+ AI Models on One Platform

Access Google's best plus Claude, Llama, and Gemma. Fine-tune and deploy from one console.

Build generative AI apps with Vertex AI. Switch between models without switching platforms.

Start Free

Rate This Project

User Reviews

Be the first to post a review of Trivy!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Related Categories

Go Software Testing Tool

Registered

2023-01-03

Similar Business Software

Parasoft

Parasoft helps organizations continuously deliver high-quality software with its AI-powered software testing platform and automated test solutions. Supporting embedded and enterprise markets, Parasoft’s proven technologies reduce the time, effort, and cost of delivering secure, reliable, and...

See Software
MuukTest

Are bugs slipping through your QA process and frustrating your customers? Catching issues early shouldn’t mean overwhelming your team with time-consuming tests. With MuukTest’s AI-driven platform, growing engineering teams reach 95% end-to-end test coverage in just 3 months, delivering quality...

See Software
QA Wolf

Whether you're shipping web or mobile apps, QA Wolf has you covered. We build automated end-to-end tests for 80% of your user flows in weeks, maintain them 24 hours a day, and provide unlimited parallel test runs on our infrastructure. Did we mention that we guarantee zero flakes? We do that...

See Software
juno.one

If you are looking for a simple way how to manage and plan projects, track issues, estimating time, use Helpdesk features, and in one place also cover test management, juno.one is the right choice for you. With clear dashboards, you are allowed to manage tasks and track bugs in a way you’ve...

See Software
BrowserStack

BrowserStack is the world’s largest cloud platform for software testing, with 19 global data centers & 20,000+ real Android and iOS devices that power nearly 1 Billion tests a year. BrowserStack's end-to-end unified testing platform is focused on supporting all genres of testing & operations,...

See Software
Sahi Pro

Sahi Pro is a no-code test automation tool for web, desktop, mobile, and SAP applications. Sahi Pro empowers business testers and automation engineers to streamline their test automation processes. Sahi Pro reduces the time, effort, and complexity involved in test automation, making it an ideal...

See Software