FreeVisit Website
TL;DR - Trivy
- Trivy is an open-source security scanner for containers and code
- It finds vulnerabilities in images, filesystems, and IaC
- Completely free and open-source
Pricing: Free forever
Best for: Individuals & startups
Pros & Cons
Pros
- Free and open source
- Fast scanning
- Easy to use
Cons
- Basic reporting
- No managed option
Key Features
Security scannerContainersKubernetesSBOMIaC scanningOpen source
Pricing Plans
Most Popular
Free
Free
Open source
- Container scanning
- IaC scanning
- SBOM
- CI integration
About Trivy
By Toolradar Team·
Trivy is an open-source vulnerability scanner for containers, filesystems, and infrastructure as code. Scan container images for OS and library vulnerabilities. Check Kubernetes manifests and Terraform for misconfigurations. Fast and easy to integrate into CI/CD. Comprehensive database updated regularly. The security scanner DevOps teams actually run.
How we evaluate tools →Source: trivy.dev
Reviews
No reviews yet. Be the first to review Trivy!
Best Trivy Alternatives
Top alternatives based on features, pricing, and user needs.
AnchoreFreemium
Container security scanning and compliance
LaceworkPaid
Data-driven cloud security
CheckmarxPaid
Application security testing platform
ZeroPathPaid
AI-native application security platform that finds and auto-fixes critical code vulnerabilities.
Defense UnicornsFreemium
Enabling modern software delivery to airgapped military systems, from cloud to edge.
Explore More
Trivy FAQ
Is Trivy free?
Yes, Trivy is completely free and open source. Apache 2.0 license. Made by Aqua Security.
What is Trivy?
Trivy is a vulnerability scanner. Scan containers, filesystems, and repos. Comprehensive security scanner.
Trivy vs Snyk?
Trivy is free and CLI-focused. Snyk has better integrations and UI. Trivy for budget; Snyk for enterprise.
What does Trivy scan?
Container images, filesystems, git repos, and Kubernetes. OS packages and language dependencies. Very comprehensive.
Source: trivy.dev