-
Notifications
You must be signed in to change notification settings - Fork 543
aquasecurity trivy Discussions
Sort by:
Latest activity
Categories, most helpful, and community links
Categories
Community links
Discussions
-
You must be logged in to vote 💡 Populate
kind/feature.metadata.component.versionontrivy fsbom generationCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning target/filesystemIssues relating to filesystem scanning -
You must be logged in to vote 🔎 -
You must be logged in to vote 🙏 -
You must be logged in to vote 🙏 trivy image and fs scan produce different results on the same files
scan/vulnerabilityIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning target/filesystemIssues relating to filesystem scanning -
You must be logged in to vote 💡 vex repo: trigger all locations.url[] irrespective of fallback mechanism
kind/featureCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning -
You must be logged in to vote 🙏 Discrepancy in CVE Detection Between Grype and Trivy for the Same SBOM
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote 🙌 -
You must be logged in to vote 👨💻 -
You must be logged in to vote 💡 Feature Idea: Complement VEX with a Simple, Built-in Reachability Check
kind/featureCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning -
You must be logged in to vote 🔎 -
You must be logged in to vote 🐛 Bug: Systemic Unchecked Slice Index After String Split in Dependency Parsers and OS Detector
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote 🙏 False Positive: GO-2026-5932 incorrectly flags golang.org/x/crypto even if openpgp subpackage is not used
scan/vulnerabilityIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning -
You must be logged in to vote 🐛 -
You must be logged in to vote 🐛 -
You must be logged in to vote 📖 Add enterprise deployment guidance for self-hosted database configuration
kind/documentationCategorizes issue or PR as related to documentation. -
You must be logged in to vote 💡 Detect manually installed Node.js runtimes and report Node.js core vulnerabilities
scan/vulnerabilityIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning -
You must be logged in to vote 🐛 VEX repository: HTTP 304 on archive re-download wipes the cached repo (only the manifest remains) → VEX silently stops being applied
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote 🙏 Questions on the possible inclusion of euvd as a datasource
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote 🙏 Duplicate components & dependencies in BOM
scan/sbomIssues relating to SBOM target/container-imageIssues relating to container image scanning -
You must be logged in to vote 🐛 License detection not working for JAR packages (trivy 0.72.0) despite license information in META-INF/MANIFEST.MF, META-INF/LICENSE
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote 🙏
scan/vulnerabilitytrivy imagesilently falls back topackage.jsonwhenyarn.lockcontains SSH git dependencies -trivy fshandles the same file properlyIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning -
You must be logged in to vote 🙏 Dev for trivy-azure-pipelines-task?
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote 🙏 cannot pull from local db-repository since version 0.71.0 and above
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote 🙏 Inconsistent library detection inside 3rd party packages between RHEL and Ubuntu
scan/vulnerabilityIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning -
You must be logged in to vote 💡 Recommendations / support for Deno
kind/featureCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning target/repositoryIssues relating to VCS repository scanning