aquasecurity trivy Discussions
Pinned Discussions
Discussions
-
You must be logged in to vote SBOM created with version 0.68.1 fails to get uploaded to Dependency Track
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote trivy fs silently drops Python packages with non-SPDX license identifiers (misses AGPL licenses)
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote BOM validation failed after upgrade to Trivy 0.68.1
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Clarify status of Rocky Linux OS package vulnerability scanning
kind/documentationCategorizes issue or PR as related to documentation. -
You must be logged in to vote Trivy does not correctly handle golang pseudo-versions.
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Show CVSS score in table output
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote CVE not reported on older Alpine, only on newer version
triage/supportIndicates an issue that is a support question. scan/vulnerabilityIssues relating to vulnerability scanning -
You must be logged in to vote Severity mismatch for CVE-2025-9230 between Trivy and NVD.
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote -
You must be logged in to vote -
You must be logged in to vote -
You must be logged in to vote Recalculating a vulnerability's Severity and CVSS score based on injected temporal/environmental metrics
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote -
You must be logged in to vote False Positive report for
scan/misconfigurationEKS Clusters should have the public access disabledIssues relating to misconfiguration scanning -
You must be logged in to vote Search on Aqua Vulnerability Database is broken? Doesn't show React2Shell
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote Outdated docs on trivy binary verification
kind/documentationCategorizes issue or PR as related to documentation. -
You must be logged in to vote Consider including GitHub malware advisories to detect compromises like Shai-Hulud
kind/featureCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning -
You must be logged in to vote Repository too big, failing github action aquasecurity/setup-trivy due timeout
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote GitHub Dependency Graph fails on gobinary
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote helm misconfiguration scanning ignores files with 'yml' extension
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Support scanning dev dependencies in Composer
kind/featureCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning target/filesystemIssues relating to filesystem scanning -
You must be logged in to vote -
You must be logged in to vote feat(java): Support for Maven 4 settings.xml
kind/featureCategorizes issue or PR as related to a new feature. target/filesystemIssues relating to filesystem scanning -
You must be logged in to vote -
You must be logged in to vote Regression in YAML ignore file support in 0.68.1
kind/bugCategorizes issue or PR as related to a bug.
