Trivy
security security-scanner
Vulnerability scanner for containers
Pros and Cons
Ventajas
- + Easy to use
- + Complete scan (CVEs, secrets, misconfig)
- + CI/CD friendly
- + Open-source
Desventajas
- - Can be slow for large images
- - False positives possible
Casos de Uso
- Container scanning in CI/CD
- IaC security checks
- Dependency auditing