aquasecurity trivy Bugs · Discussions · GitHub

Sort by: Latest activity

Bugs Discussions

Something doesn't work as expected

You must be logged in to vote

Trivy terraform misconfiguration scan not picking up files one directory below another file.
kind/bug Categorizes issue or PR as related to a bug. lifecycle/stale Denotes an issue or PR has remained open with no activity and will be auto-closed. scan/misconfiguration Issues relating to misconfiguration scanning
chejn started Sep 29, 2022 in Bugs · Closed

5
You must be logged in to vote

trivy does not report AVD-AZU-0011 where tfsec does
kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
tbutler-qontigo started May 18, 2023 in Bugs · Closed

3
You must be logged in to vote

CycloneDX output can contain duplicate dependsOn items, making the BOM invalid
kind/bug Categorizes issue or PR as related to a bug.
nscuro started May 22, 2023 in Bugs · Closed

1
You must be logged in to vote

Platform flag is being ignored when scanning an image
kind/bug Categorizes issue or PR as related to a bug.
FrimIdan started May 9, 2023 in Bugs

12
You must be logged in to vote

--file-patterns doesn't match kubernetes manifests
kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning target/filesystem Issues relating to filesystem scanning
lsoumille started Oct 20, 2022 in Bugs · Closed

2
You must be logged in to vote

False alarm of USER command in Dockerfile for docker-cis compliance
kind/bug Categorizes issue or PR as related to a bug.
chrisleekr started May 17, 2023 in Bugs · Closed

2
You must be logged in to vote

license information of several components is incorrect when creating sbom
kind/bug Categorizes issue or PR as related to a bug.
2020-ks started Mar 10, 2023 in Bugs

10
You must be logged in to vote

trivy do not scan vulnerabilities on trivy k8s ... sub command
kind/bug Categorizes issue or PR as related to a bug.
chen-keinan started May 16, 2023 in Bugs · Closed

1
You must be logged in to vote

Addeding an OCI referrer using aquasecurity/trivy-plugin-referrer fails with "goroutine stack exceeds 1000000000-byte limit"
kind/bug Categorizes issue or PR as related to a bug.
nicholasdille started May 15, 2023 in Bugs · Closed

2
You must be logged in to vote

timeout is not working as expected
kind/bug Categorizes issue or PR as related to a bug. lifecycle/stale Denotes an issue or PR has remained open with no activity and will be auto-closed.
sourabhgupta385 started Jun 8, 2022 in Bugs

4
You must be logged in to vote

Trivy can hang if an error occurs scanning a container image with --slow option
kind/bug Categorizes issue or PR as related to a bug.
mpoindexter started May 11, 2023 in Bugs · Closed

1
You must be logged in to vote

multiple secrets in the same line not detected properly
kind/bug Categorizes issue or PR as related to a bug. scan/secret Issues relating to secret scanning
MorAlon1 started Mar 15, 2023 in Bugs

1
You must be logged in to vote

File Location Missing in Licence Scan Output
kind/bug Categorizes issue or PR as related to a bug.
PeterBurner started Apr 19, 2023 in Bugs

1
You must be logged in to vote

Vulnerabilities identified in a scan using Trivy can differ depending on whether an image or an SBOM is used.
kind/bug Categorizes issue or PR as related to a bug.
genos1998 started May 8, 2023 in Bugs · Closed

6
You must be logged in to vote

FATAL: get k8s artifacts with node info error: failed listing resources for gvr: apps/v1, Resource=deployments - Get "https://17445F7FD07FE5246FBFE67AD1C0AEC7.gr7.ap-northeast-1.eks.amazonaws.com/apis/apps/v1/deployments": getting credentials: exec: executable aws failed with exit code 255
kind/bug Categorizes issue or PR as related to a bug.
Jaideep1997 started May 11, 2023 in Bugs

0
You must be logged in to vote

Ingress-nginx "server-tokens" parameter reported as unsafe
kind/bug Categorizes issue or PR as related to a bug. lifecycle/stale Denotes an issue or PR has remained open with no activity and will be auto-closed. scan/misconfiguration Issues relating to misconfiguration scanning
bovy89 started Feb 16, 2023 in Bugs

2
You must be logged in to vote

BUG: Non-fatal permissions errors for files in /etc when Trivy container is run as non-root
kind/bug Categorizes issue or PR as related to a bug. lifecycle/stale Denotes an issue or PR has remained open with no activity and will be auto-closed.
tspearconquest started Oct 18, 2022 in Bugs

5
You must be logged in to vote

Java sub-modules scanned twice in filesystem scan
kind/bug Categorizes issue or PR as related to a bug.
neilcar started Apr 20, 2023 in Bugs

0
You must be logged in to vote

Trivy on EKS unable to scan any images
kind/bug Categorizes issue or PR as related to a bug. help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.
mkm29 started Nov 12, 2022 in Bugs

9
You must be logged in to vote

SBOM generation fails for rootfs
scan/sbom Issues relating to SBOM
Ju-Ru started Jan 17, 2023 in Bugs

0
You must be logged in to vote

panic: when analysing dockerfile
kind/bug Categorizes issue or PR as related to a bug.
zetaab started Mar 16, 2023 in Bugs

3
You must be logged in to vote

Lose dependences of the sub-component when use <version>${revision}</version> in maven project
kind/bug Categorizes issue or PR as related to a bug.
shanjunwei started Mar 15, 2023 in Bugs

0
You must be logged in to vote

Scanning '/' fails occasionally with "no such file or directory"
kind/bug Categorizes issue or PR as related to a bug.
mudler started Mar 10, 2023 in Bugs

2
You must be logged in to vote

k8s: scan open secrets on resources not working
kind/bug Categorizes issue or PR as related to a bug. target/kubernetes Issues relating to kubernetes cluster scanning
floriandreher started Oct 17, 2022 in Bugs

1