simar7

Please reopen if issue still persists. Thanks.

Hi @aquanne can you share the debug output for running the scan with the with --skip-policy-update flag? In addition, you mentioned the scan works skip policy update flag is not...

Also if it is possible to share your IaC config files? That way we can help you debug faster.

Related discussion: https://github.com/aquasecurity/trivy/discussions/4573 and a broader one here: https://github.com/aquasecurity/trivy/discussions/3620 As far as more granular ignoring is concerned, I think it might be easier to support that within the `.trivyignore` file...

thanks @acdha - I've created a couple of issues (docs and experience related) to improve this. Appreciate the feedback.

I feel we have enough to take away from this issue and have opened follow ups (https://github.com/aquasecurity/trivy/issues/5394 and https://github.com/aquasecurity/trivy/issues/5395) to specifically track improvements that we can close this. Please open...

As a placeholder, the first PoC for ansible scanning is available on this branch https://github.com/aquasecurity/trivy/compare/main...ansible-poc

I'm also interested in knowing if there is any interest in this.

Trivy action only supports what Trivy has to offer. Currently Trivy does not offer this feature in the open source version.