How to package trivy vulnerability database to docker image

[nistal97]

Hello team, we would like to use trivy to scan image in CI/CD pipeline, and seems in a clean env trivy will download vuln database for the first time. To reduce time cost, is it possible to package database file into docker image so it runs everytime without downloading db? Thanks.

[itaysk]

it seems that you are looking for this? https://aquasecurity.github.io/trivy/v0.36/docs/advanced/air-gap/

[github-actions[bot]]

This issue is stale because it has been labeled with inactivity.