trivy

A simple and comprehensive vulnerability scanner

Subcommands

NameDescription
image,iScan an image
filesystem,fsScan local filesystem for language-specific dependencies and config files
rootfsScan rootfs
sbomGenerate SBOM for an artifact
repository,repoScan remote repository
client,cClient mode
server,sServer mode
config,confScan config files
plugin,pManage plugins
versionPrint the version
help,hShows a list of commands or help for one command

Options

NameDescription
--quiet,-qSuppress progress bar and log output [$TRIVY_QUIET]
--debug,-dEnable debug output [$TRIVY_DEBUG]
--cache-dir <command>Cache directory [$TRIVY_CACHE_DIR]
--help,-h
  • Persistent ⚖
--version,-vPrint the version