This is an old revision of the document!

Docker - Vulnerability Scanning Tools - Trivy

Trivy is open source, and scans images for vulnerabilities in OS packages and application dependencies, helping identify security risks before deployment.

Trivy is lightweight, fast, and can output results in various formats like table, JSON, and Markdown for easy integration into security workflows.

Usage

trivy image <image-name>

NOTE: Replace <image-name> with the name of the Docker image.

Trivy will analyze the image layers for known vulnerabilities.