aquasecurity trivy Discussions
Discussions
-
You must be logged in to vote Telemetry Cannot Be Disabled
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote trivy-db is stale: vuln-list and vuln-list-* repos are not being updated
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Azure AI Foundry, OpenAI secret not detected
kind/featureCategorizes issue or PR as related to a new feature. scan/secretIssues relating to secret scanning -
You must be logged in to vote Support scanning local block devices with trivy vm
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Node.JS
triage/supportpackage.jsonparser rejects valid names with slashes (e.g. "rxjs/ajax")Indicates an issue that is a support question. -
You must be logged in to vote -
You must be logged in to vote -
You must be logged in to vote LVM detection only checks sector 1 and does not support LVM1
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote -
You must be logged in to vote Java JAR packages not extracted when
kind/bug--scanners=""is specifiedCategorizes issue or PR as related to a bug. -
You must be logged in to vote Error with SBOM via OCI referrers - SBOM download error: unacceptable media type
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote -
You must be logged in to vote Improve security of contrib/install.sh by support validating the binaries with sigstore/cosign or provided checksum
kind/featureCategorizes issue or PR as related to a new feature. -
You must be logged in to vote Supply expected checksum to contrib/install.sh
kind/featureCategorizes issue or PR as related to a new feature. -
You must be logged in to vote GitHub Actions Workflow Security Audit — Post-Incident Hardening
kind/featureCategorizes issue or PR as related to a new feature. -
You must be logged in to vote How to ignore vulnerability without CVE but GHSA ID?
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote Add JSON Schema for
kind/feature.trivyignore.yamlconfiguration fileCategorizes issue or PR as related to a new feature. -
You must be logged in to vote How do I ignore all vulnerabilities for a package?
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote Docker Image missing latest tag
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Trivy Java DB failing to Publish
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote Trivy scans a library declared as "test" in a dependency module
kind/bugCategorizes issue or PR as related to a bug. -
You must be logged in to vote False positive CVE-2026-2603 — keycloak-server-spi-private 26.2.14 flagged but Red Hat backported the fix
triage/supportIndicates an issue that is a support question. -
You must be logged in to vote -
You must be logged in to vote Trivy scanner should detect Chiselled Ubuntu images and installed packages
kind/featureCategorizes issue or PR as related to a new feature. scan/vulnerabilityIssues relating to vulnerability scanning target/container-imageIssues relating to container image scanning
