Skip to content

Issues: aquasecurity/trivy

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

166 Open 2,558 Closed
166 Open 2,558 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

bug(report): empty Target for some SBOM files in image scan/sbom Issues relating to SBOM
#8189 opened Dec 28, 2024 by DmitriyLewen
fix(misconf): improve CIDR related checks kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8184 opened Dec 26, 2024 by nikpivkin
2 tasks done
Incorrect versions in website version selector kind/documentation Categorizes issue or PR as related to documentation.
#8182 opened Dec 26, 2024 by itaysk
@itaysk
feat: add --severity-src flag to customize vulnerability severity selection kind/feature Categorizes issue or PR as related to a new feature.
#8180 opened Dec 26, 2024 by knqyf263 v0.60.0
@nikpivkin
feat: prevent scanning oversized container images
#8176 opened Dec 25, 2024 by knqyf263 v0.59.0
1
@nikpivkin
2
enhancement(cyclonedx): use Compositions field for dependencies with unknown relationships scan/sbom Issues relating to SBOM
#8157 opened Dec 23, 2024 by DmitriyLewen
@DmitriyLewen
fix(sarif): check url before converting to string kind/bug Categorizes issue or PR as related to a bug.
#8154 opened Dec 21, 2024 by nikpivkin
2 tasks done
fix(sarif): handle empty artifactLocation.uri fields
#8141 opened Dec 20, 2024 by nikpivkin
4
feat(misconf): support for ignoring by inline comments for Dockerfile kind/feature Categorizes issue or PR as related to a new feature. scan/misconfiguration Issues relating to misconfiguration scanning target/filesystem Issues relating to filesystem scanning
#8113 opened Dec 17, 2024 by nikpivkin
1
@nikpivkin
Trivy panics on aws_s3_bucket resource with bucket = null kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8093 opened Dec 13, 2024 by nikpivkin
1
@nikpivkin
1
bug(k8s): Trivy gets stuck when scanning a cluster with taints on nodes bug target/kubernetes Issues relating to kubernetes cluster scanning
#8087 opened Dec 12, 2024 by afdesk
@afdesk
3
bug(secret): false positive for gcp-service-account kind/bug Categorizes issue or PR as related to a bug. scan/secret Issues relating to secret scanning
#8079 opened Dec 11, 2024 by nikpivkin
2 tasks done
@nikpivkin
feat(k8s): filter kubernetes artifacts by REGO rules kind/feature Categorizes issue or PR as related to a new feature. target/kubernetes Issues relating to kubernetes cluster scanning
#8078 opened Dec 11, 2024 by afdesk
bug(misconf): Incorrect location of findings in k8s JSON scan kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8072 opened Dec 9, 2024 by nikpivkin
1 of 2 tasks
1
@nikpivkin
fix: do not check unmanaged resources kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8054 opened Dec 5, 2024 by nikpivkin
2 tasks done
v0.59.0
@nikpivkin
bug(misconf): Terraform resolver should not request credentials when resolving external module kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8023 opened Nov 29, 2024 by simar7 v0.59.0
1
@simar7 @nikpivkin
refactor(checks): Deprecate AVD-DS-0024 kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
#8017 opened Nov 29, 2024 by simar7
2 tasks done
v0.59.0
1
@simar7
feat(cargo): add workspaces as dependencies and use workspace relationship for them kind/feature Categorizes issue or PR as related to a new feature.
#8013 opened Nov 29, 2024 by DmitriyLewen v0.60.0
@DmitriyLewen
feat(yarn): add workspace as dependencies and use workspace relationship for them kind/feature Categorizes issue or PR as related to a new feature.
#8012 opened Nov 29, 2024 by DmitriyLewen v0.60.0
@DmitriyLewen
1
support registry mirrors for image scanning kind/feature Categorizes issue or PR as related to a new feature. target/container-image Issues relating to container image scanning
#7966 opened Nov 20, 2024 by itaysk v0.59.0
@DmitriyLewen
5
feat(misconf): Add support for fallback for trivy-checks kind/feature Categorizes issue or PR as related to a new feature. scan/misconfiguration Issues relating to misconfiguration scanning
#7960 opened Nov 20, 2024 by simar7 v0.59.0
1
@simar7
Add HTTP support for downloading HTTP kind/feature Categorizes issue or PR as related to a new feature.
#7891 opened Nov 8, 2024 by knqyf263
1
@knqyf263
6
bug(java): We should parse dependencies with unsupported scopes to correctly detect version/skip dependency kind/bug Categorizes issue or PR as related to a bug.
#7844 opened Oct 31, 2024 by DmitriyLewen
License exceptions with a plus sign help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. kind/bug Categorizes issue or PR as related to a bug. scan/license Issues relating to license scanning
#7838 opened Oct 31, 2024 by knqyf263
bug(sbom): Duplicate SBOM packages for multi-module pom.xml files kind/bug Categorizes issue or PR as related to a bug.
#7824 opened Oct 30, 2024 by DmitriyLewen v0.59.0
2
@DmitriyLewen
6
ProTip! Add no:assignee to see everything that’s not assigned.