A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI. Trivy detects vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and application dependencies (Bundler, Composer, npm, yarn, etc.). Trivy is easy to use. Just install the binary and you're ready to scan. All you need to do for scanning is to specify a target such as an image name of the container.
A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI. Trivy detects vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and application dependencies (Bundler, Composer, npm, yarn, etc.). Trivy is easy to use. Just install the binary and you're ready to scan. All you need to do for scanning is to specify a target such as an image name of the container.
To install trivy, run the following command in macOS terminal (Applications->Utilities->Terminal)
sudo port install trivy
To see what files were installed by trivy, run:
port contents trivy
To later upgrade trivy, run:
sudo port selfupdate && sudo port upgrade trivy
Reporting an issue on MacPorts Trac
The MacPorts Project uses a system called Trac to file tickets to report bugs and enhancement requests.
Though anyone may search Trac for tickets, you must have a GitHub account in order to login to Trac to create tickets.