TL;DR - Trivy
- Trivy is an open-source security scanner for containers and code
- It finds vulnerabilities in images, filesystems, and IaC
- Completely free and open-source
Pricing: Free forever
Best for: Individuals & startups
Score: 88/100
Pricing Plans
Most Popular
Free
Free
Open source
- Container scanning
- IaC scanning
- SBOM
- CI integration
About Trivy
Trivy scans for vulnerabilities in containers and infrastructure. Open-source security scanning—finding problems before deployment.
The scanning is comprehensive. The open-source model is accessible. The integration is easy.
Security-conscious teams use Trivy for container and infrastructure scanning.
Reviews
No reviews yet. Be the first to review Trivy!
Write a ReviewExplore More
Trivy FAQ
Yes, Trivy is completely free and open source. Apache 2.0 license. Made by Aqua Security.
Trivy is a vulnerability scanner. Scan containers, filesystems, and repos. Comprehensive security scanner.
Trivy is free and CLI-focused. Snyk has better integrations and UI. Trivy for budget; Snyk for enterprise.
Container images, filesystems, git repos, and Kubernetes. OS packages and language dependencies. Very comprehensive.