Web lists-archives.com

Bug#929458: ITP: trivy -- A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI




Package: wnpp
Severity: wishlist
Owner: Nobuhiro Iwamatsu <iwamatsu@xxxxxxxxxx>

* Package name    : trivy
  Version         : 0.1.1
  Upstream Author : Teppei Fukuda <knqyf263@xxxxxxxxx>
* URL             : https://github.com/knqyf263/trivy/
* License         : AGPL-3
  Programming Lang: Go
  Description     : A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI

Trivy (tri pronounced like trigger, vy pronounced like envy) is a simple
and comprehensive vulnerability scanner for containers. Trivy detects
vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and application
dependencies (Bundler, Composer, npm, yarn etc.). Trivy is easy to use.
Just install the binary and you're ready to scan. All you need to do for
scanning is to specify an image name of container.