InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now. Learn more →
Trivy Alternatives
Similar projects and alternatives to trivy
-
Grafana
The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.
-
InfluxDB
InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
-
-
-
-
-
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
-
syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
-
-
-
-
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
-
-
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
-
-
kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
-
-
-
snyk
Discontinued Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to: https://github.com/snyk/cli]
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a better trivy alternative or higher similarity.
trivy discussion
trivy reviews and mentions
Posts with mentions or reviews of trivy.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2025-05-03.
- Stop shipping insecure Dockerfiles: real devs don’t run as root
-
Stop using Docker like it’s your first dev job
Trivy Security scanning tool
-
The Only Docker Guide You’ll Ever Need (Beginner to Expert)
Trivy (scan for vulnerabilities): https://github.com/aquasecurity/trivy
-
Ask HN: Has anyone adopted or seen adoption of RFC8959 secret-token?
That particular structure hasn't really taken off, but the general idea of having unique-ish token formats that can be mapped back to a provider is becoming more popular.
Trivy has a pretty good collection of examples that is used for its secret scanning functionality, https://github.com/aquasecurity/trivy/blob/main/pkg/fanal/se....
-
Mastering Docker Image Management with GitHub Actions and Container Registries
Software Bill of Materials (SBOM): Knowing what’s in your software is the new cool. Tools like Syft and Trivy can generate SBOMs as part of your CI/CD pipeline, enhancing supply chain security.
-
Terraform Cookbook: Development Environment Recipe
Trivy: security scanner for IaC and dependencies
-
Building Web Applications Using Amazon EKS : AWS Project
Prior to deploying kubernetes manifest files to EKS Cluster, supplementary steps need to be added to prevent security and misconfiguration issue by using both *Checkov *and Trivy . Also, we will use seperate ArgoCD account from admin user that we’ve used in the previous lab. This will follow ArgoCD RBAC rule to secure ArgoCD and EKS cluster ultimately.
- 🛡️ Effective Vulnerability Monitoring in Kubernetes
-
Dockerfile Best Practices: Building Efficient and Secure Containers
Regularly scan your Docker images for vulnerabilities using tools like Trivy or Clair.
-
Day 25: Container Security with Trivy - My 90 Days of DevOps Journey
Since I'm working on a Windows machine, I went straight to the Trivy website (https://aquasecurity.github.io/trivy/) to download the latest release. The official website is the best place to get the latest version of Trivy. This direct approach gives me more control over the installation process.
-
A note from our sponsor - InfluxDB
www.influxdata.com | 14 May 2025
Stats
Basic trivy repo stats
95
26,368
9.8
2 days ago
aquasecurity/trivy is an open source project licensed under Apache License 2.0 which is an OSI approved license.
The primary programming language of trivy is Go.
Sponsored
InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com
Review ★★★★☆ 7/10