Skip to content

Issues: aquasecurity/trivy

Beta
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
23 Open 751 Closed
23 Open 751 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

refactor(db): change logic to detect wrong DB
#8864 opened May 13, 2025 by DmitriyLewen Loading…
3 of 6 tasks
@DmitriyLewen
feat(license): improve work with custom classification of licenses from config file
#8861 opened May 13, 2025 by DmitriyLewen Loading…
3 of 6 tasks
1
@DmitriyLewen
enhancement(license): improve work with custom classification of licenses from config file scan/license Issues relating to license scanning
#8856 opened May 12, 2025 by DmitriyLewen v0.63.0
1
@DmitriyLewen
bug(sbom): sbom mode should support --distro flag kind/bug Categorizes issue or PR as related to a bug. scan/sbom Issues relating to SBOM
#8636 opened Mar 28, 2025 by DmitriyLewen v0.63.0
@DmitriyLewen
bug(report): Trivy panics when converting json report without Packages to table report with summary table kind/bug Categorizes issue or PR as related to a bug.
#8622 opened Mar 27, 2025 by DmitriyLewen
1
@DmitriyLewen
2
fix(report): don't panic when report contains vulns, but doesn't contain packages for table format
#8549 opened Mar 14, 2025 by DmitriyLewen Loading…
2 of 6 tasks
1
@DmitriyLewen
2
bug(sbom): Trivy only checks parents from the current result when plotting the dependency graph kind/bug Categorizes issue or PR as related to a bug. scan/sbom Issues relating to SBOM
#8516 opened Mar 10, 2025 by DmitriyLewen
@DmitriyLewen
1
fix(flag): resolve env's from config file for string and []string flags
#8437 opened Feb 24, 2025 by DmitriyLewen Draft
8 tasks
@DmitriyLewen
1
feat(flag): resolve env's from config file kind/feature Categorizes issue or PR as related to a new feature.
#8436 opened Feb 24, 2025 by DmitriyLewen
@DmitriyLewen
1
feat: add fields for json and SBOM formats with info that Trivy doesn't support OS kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning target/container-image Issues relating to container image scanning
#8256 opened Jan 20, 2025 by DmitriyLewen
1
@DmitriyLewen
enhancement(cyclonedx): use Compositions field for dependencies with unknown relationships scan/sbom Issues relating to SBOM
#8157 opened Dec 23, 2024 by DmitriyLewen
@DmitriyLewen
refactor: use UUID/hash for Packages IDs from pom.xml files.
#7879 opened Nov 6, 2024 by DmitriyLewen Loading…
4 of 7 tasks
1
@DmitriyLewen
6
bug(sbom): Duplicate SBOM packages for multi-module pom.xml files kind/bug Categorizes issue or PR as related to a bug.
#7824 opened Oct 30, 2024 by DmitriyLewen v0.63.0
2
@DmitriyLewen
8
feat(java): add support of test scope for pom.xml files
#7486 opened Sep 11, 2024 by DmitriyLewen Draft
3 of 7 tasks
@DmitriyLewen
10
refactor: include/exclude dev deps in analyzers
#7484 opened Sep 11, 2024 by DmitriyLewen Loading…
3 of 6 tasks
1
@DmitriyLewen
9
enhancement(report): include/exclude dev deps in analyzers
#7476 opened Sep 10, 2024 by DmitriyLewen v0.64.0
1
@DmitriyLewen
12
feat(report): add Supported field for json and SBOM formats
#7378 opened Aug 23, 2024 by DmitriyLewen Loading…
2 of 6 tasks
1
@DmitriyLewen
3
fix(sbom): detect OS from purl if OS component not found lifecycle/stale Denotes an issue or PR has remained open with no activity and will be auto-closed.
#7101 opened Jul 5, 2024 by DmitriyLewen Loading…
3 of 6 tasks
1
@DmitriyLewen
10
fix(sbom): detect OS from purl if OS component not found kind/bug Categorizes issue or PR as related to a bug.
#7100 opened Jul 5, 2024 by DmitriyLewen
1
@DmitriyLewen
3
fix(sbom): detect main OS and ignore pkgs for other OSes
#6907 opened Jun 11, 2024 by DmitriyLewen Loading…
3 of 6 tasks
@DmitriyLewen
14
feat(oci): add support OCI tarballs kind/feature Categorizes issue or PR as related to a new feature.
#5775 opened Dec 12, 2023 by DmitriyLewen
1
@DmitriyLewen
5
tar archive may not be scanned depending on how it was created kind/bug Categorizes issue or PR as related to a bug. priority/backlog Higher priority than priority/awaiting-more-evidence.
#3080 opened Oct 26, 2022 by raesene
@DmitriyLewen
6
Trivy warns "failed to get the vulnerability" about a rejected CVE, CVE-2021-20095 kind/bug Categorizes issue or PR as related to a bug. priority/backlog Higher priority than priority/awaiting-more-evidence.
#2623 opened Jul 29, 2022 by hlein
1
@DmitriyLewen
9
ProTip! Add no:assignee to see everything that’s not assigned.