trivy-operator icon indicating copy to clipboard operation
trivy-operator copied to clipboard
verified publisher icon aquasecurity

Specify option to scan container images

Open zeroalphat opened this issue 3 years ago • 2 comments

I want to make it possible to specify arbitrary options that Trivy uses to scan container images. As an example, a security management product "yamory" I use requires package information in a scan result. So, I need to set --list-all-pkgs option when Trivy scans. This feature would help with the integration of various products.

https://yamory.io/ (Japanese site only)

zeroalphat avatar Oct 12 '22 06:10 zeroalphat

@zeroalphat is adding sbom , #143 , can solve your issue as well ?

chen-keinan avatar Nov 20 '22 10:11 chen-keinan

I don't think an SBOM would solve this issue, since yamory does not provide a function to retrieve package information from the SBOM.

zeroalphat avatar Nov 22 '22 05:11 zeroalphat