trivy
A simple and comprehensive vulnerability scanner
Subcommands
| Name | Description |
|---|---|
image, i | Scan an image |
filesystem, fs | Scan local filesystem for language-specific dependencies and config files |
rootfs | Scan rootfs |
sbom | Generate SBOM for an artifact |
repository, repo | Scan remote repository |
client, c | Client mode |
server, s | Server mode |
config, conf | Scan config files |
plugin, p | Manage plugins |
version | Print the version |
help, h | Shows a list of commands or help for one command |
Options
| Name | Description |
|---|---|
--quiet, -q | Suppress progress bar and log output [$TRIVY_QUIET] |
--debug, -d | Enable debug output [$TRIVY_DEBUG] |
--cache-dir <cache-dir> | Cache directory [$TRIVY_CACHE_DIR] |
--help, -h |
|
--version, -v | Print the version |