Trivy
Trivy Container Scanning: Scan Docker Images and Kubernetes Workloads in CI
Trivy is a fast, comprehensive open-source vulnerability scanner from Aqua Security that scans container images, filesystems, Git repositories, Kubernetes manifests, and IaC files. This guide covers local scanning, GitHub Actions integration, SBOM generation, and managing findings with .trivyignore. Key Takeaways Trivy scans more than just OS packages. It detects vulnerabilities