Trivy is an open-source security scanner developed by Aqua Security that performs comprehensive static analysis of container images, filesystems, and Git repositories. It detects known vulnerabilities (CVEs) in OS packages and application dependencies, identifies misconfigurations against infrastructure-as-code best practices, and uncovers exposed secrets such as API keys and passwords. Unlike legacy scanners requiring a database sync, Trivy downloads vulnerability databases automatically at runtime.
Glossary
Trivy

What is Trivy?
Trivy is an open-source, comprehensive security scanner that detects vulnerabilities, misconfigurations, and secrets in container images, filesystems, and Git repositories.
Trivy integrates seamlessly into CI/CD pipelines and Kubernetes admission controllers, scanning images before they are pushed to a registry or deployed to a cluster. It supports multiple output formats including SARIF, JSON, and HTML, and can generate an SBOM in CycloneDX or SPDX format. Its high-speed, stateless design makes it the default scanner in platforms like Harbor and GitLab for enforcing image scanning pipeline policies.
Key Features of Trivy
Trivy is an open-source, all-in-one security scanner that detects vulnerabilities, misconfigurations, and secrets across the entire software development lifecycle. It covers container images, filesystems, Git repositories, and infrastructure-as-code configurations.
Frequently Asked Questions
Clear, technical answers to the most common questions about using Trivy for vulnerability, misconfiguration, and secret scanning in containerized and sovereign AI environments.
Trivy is an open-source, comprehensive security scanner developed by Aqua Security that detects vulnerabilities, misconfigurations, and secrets in container images, filesystems, and Git repositories. It works by parsing the target artifact—such as an OCI image manifest—extracting the installed package list, and cross-referencing it against a continuously updated database of known Common Vulnerabilities and Exposures (CVEs) from sources like the National Vulnerability Database (NVD) and vendor-specific advisories. Unlike legacy scanners that require a running daemon, Trivy operates as a single statically compiled binary, making it ideal for integration into air-gapped CI/CD pipelines. For misconfiguration scanning, it evaluates Infrastructure as Code (IaC) files against a library of built-in Rego policies, while its secret detection engine uses regular expressions and entropy analysis to identify exposed credentials.
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Trivy vs. Other Container Scanners
A feature-by-feature comparison of Trivy against other popular open-source and commercial container image scanners used in private registries and CI/CD pipelines.
| Feature | Trivy | Clair | Grype | Snyk |
|---|---|---|---|---|
License | Apache 2.0 | Apache 2.0 | Apache 2.0 | Proprietary |
Vulnerability DB | Built-in, auto-refresh every 6h | Requires separate updater service | Built-in, auto-refresh every 24h | Proprietary SaaS DB |
Misconfiguration Scanning | ||||
Secret Detection | ||||
SBOM Generation (CycloneDX/SPDX) | ||||
Filesystem Scanning | ||||
Git Repository Scanning | ||||
Kubernetes Cluster Scanning | ||||
OCI Image Compliance Validation | ||||
Average Scan Time (medium image) | < 10 sec | 30-60 sec | < 5 sec | 15-30 sec |
Air-Gapped Operation | ||||
Cosign/Sigstore Signature Verification | ||||
CIS Benchmark Checks | ||||
Dependency Graph Visualization | ||||
Runtime Container Scanning |
Related Terms
Explore the core concepts and adjacent tools that form the foundation of container vulnerability scanning and software supply chain security.
Misconfiguration Scanning
Beyond CVEs, Trivy scans Infrastructure as Code files for security misconfigurations. It evaluates Terraform, CloudFormation, Dockerfiles, and Kubernetes manifests against hundreds of built-in policies.
- Detects overly permissive IAM roles and exposed storage buckets
- Identifies containers running as root or with dangerous capabilities
- Supports custom Rego policies for organization-specific compliance rules
Secret Detection
Trivy scans filesystems, Git repositories, and container image layers for hardcoded secrets and sensitive information. It detects over 200 secret types including API keys, private keys, and database connection strings.
- Scans entire Git history to find accidentally committed credentials
- Uses pattern matching and entropy analysis to reduce false positives
- Integrates with pre-commit hooks to block secrets before they reach the repository
Vulnerability Database Sources
Trivy aggregates vulnerability data from multiple authoritative sources to provide comprehensive coverage. It caches these databases locally for air-gapped operation.
- NVD (National Vulnerability Database) for general CVE data
- GitHub Security Advisories for language-specific ecosystem vulnerabilities
- Red Hat OVAL, Debian Security Tracker, and Alpine SecDB for distribution-specific advisories
- Updates every 6 hours by default to capture newly disclosed vulnerabilities
Integration with Cosign
Trivy integrates with Cosign and the Sigstore ecosystem to verify and generate signed attestations. After scanning an image, Trivy can produce a cryptographically signed vulnerability attestation stored alongside the image in the registry.
- Enables keyless signing using OIDC-based identities
- Allows admission controllers to verify scan results before deployment
- Creates an immutable, tamper-proof record that a specific image was scanned at a specific time
Kubernetes Admission Control
Trivy can be deployed as a ValidatingAdmissionWebhook in Kubernetes to enforce security policies at deployment time. It intercepts pod creation requests and blocks images that fail vulnerability thresholds.
- Rejects images with CRITICAL or HIGH severity CVEs
- Enforces that only images with valid Cosign signatures are deployed
- Generates audit logs for compliance reporting without blocking deployments in monitor mode

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us