Skip to content

Issues: aquasecurity/trivy

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

155 Open 2,626 Closed
155 Open 2,626 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

feat(misconf): Simplify checks bundle fetching kind/feature Categorizes issue or PR as related to a new feature.
#8573 opened Mar 18, 2025 by simar7 v0.61.0
@simar7
bug(composer): Trivy can't decode json with emoji kind/bug Categorizes issue or PR as related to a bug.
#8562 opened Mar 17, 2025 by DmitriyLewen
@DmitriyLewen
2
feat(cli): Add new version checking kind/feature Categorizes issue or PR as related to a new feature.
#8552 opened Mar 14, 2025 by owenrumney
1
@owenrumney
bug(k8s): trivy k8s scan throws panic: runtime error: slice bounds out of range error kind/bug Categorizes issue or PR as related to a bug.
#8542 opened Mar 13, 2025 by simar7
2 tasks done
v0.61.0
@simar7
feat(license): scan vendor directory for license for go.mod files good first issue Denotes an issue ready for a new contributor, according to the "help wanted" guidelines. help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. scan/license Issues relating to license scanning
#8527 opened Mar 11, 2025 by DmitriyLewen
bug(sbom): Trivy only checks parents from the current result when plotting the dependency graph kind/bug Categorizes issue or PR as related to a bug. scan/sbom Issues relating to SBOM
#8516 opened Mar 10, 2025 by DmitriyLewen
@DmitriyLewen
1
fix(terraform): correctly handle unresolvable values in checks kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8485 opened Mar 4, 2025 by nikpivkin v0.61.0
@nikpivkin
feat(misconf): Introduce unified scanner scan/misconfiguration Issues relating to misconfiguration scanning
#8445 opened Feb 25, 2025 by simar7 v0.61.0
@simar7 @nikpivkin
docs: add explanation for how to use non-system certificates good first issue Denotes an issue ready for a new contributor, according to the "help wanted" guidelines. kind/documentation Categorizes issue or PR as related to documentation.
#8440 opened Feb 24, 2025 by knqyf263
@rnemeth90
3
feat(flag): resolve env's from config file kind/feature Categorizes issue or PR as related to a new feature.
#8436 opened Feb 24, 2025 by DmitriyLewen
@DmitriyLewen
1
feat(opensuse): add MicroOS and Leap Micro support help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. scan/vulnerability Issues relating to vulnerability scanning
#8409 opened Feb 17, 2025 by DmitriyLewen
1
bug(k8s): versions are missing in KBOM kind/bug Categorizes issue or PR as related to a bug. target/kubernetes Issues relating to kubernetes cluster scanning
#8358 opened Feb 5, 2025 by afdesk v0.61.0
@afdesk
2
feat(nodejs): Bun support help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. kind/feature Categorizes issue or PR as related to a new feature.
#8307 opened Jan 29, 2025 by knqyf263
Support SPDX license operators kind/feature Categorizes issue or PR as related to a new feature. scan/license Issues relating to license scanning
#8270 opened Jan 21, 2025 by knqyf263
feat: add fields for json and SBOM formats with info that Trivy doesn't support OS kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning target/container-image Issues relating to container image scanning
#8256 opened Jan 20, 2025 by DmitriyLewen
1
@DmitriyLewen
feat(secret): ignore .dist-info directory for Python projects help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. scan/secret Issues relating to secret scanning
#8212 opened Jan 8, 2025 by knqyf263
enhancement(cyclonedx): use Compositions field for dependencies with unknown relationships scan/sbom Issues relating to SBOM
#8157 opened Dec 23, 2024 by DmitriyLewen
@DmitriyLewen
fix(sarif): check url before converting to string kind/bug Categorizes issue or PR as related to a bug.
#8154 opened Dec 21, 2024 by nikpivkin
2 tasks done
1
2
fix(sarif): handle empty artifactLocation.uri fields
#8141 opened Dec 20, 2024 by nikpivkin
4
bug(k8s): Trivy gets stuck when scanning a cluster with taints on nodes bug target/kubernetes Issues relating to kubernetes cluster scanning
#8087 opened Dec 12, 2024 by afdesk
@afdesk
3
bug(secret): false positive for gcp-service-account kind/bug Categorizes issue or PR as related to a bug. scan/secret Issues relating to secret scanning
#8079 opened Dec 11, 2024 by nikpivkin
2 tasks done
@nikpivkin
feat(k8s): filter kubernetes artifacts by REGO rules kind/feature Categorizes issue or PR as related to a new feature. target/kubernetes Issues relating to kubernetes cluster scanning
#8078 opened Dec 11, 2024 by afdesk
feat(cargo): add workspaces as dependencies and use workspace relationship for them kind/feature Categorizes issue or PR as related to a new feature.
#8013 opened Nov 29, 2024 by DmitriyLewen v0.61.0
@DmitriyLewen
feat(yarn): add workspace as dependencies and use workspace relationship for them kind/feature Categorizes issue or PR as related to a new feature.
#8012 opened Nov 29, 2024 by DmitriyLewen v0.61.0
1
@DmitriyLewen
1
feat(misconf): Add support for fallback for trivy-checks kind/feature Categorizes issue or PR as related to a new feature. scan/misconfiguration Issues relating to misconfiguration scanning
#7960 opened Nov 20, 2024 by simar7
1
@simar7
ProTip! Add no:assignee to see everything that’s not assigned.