Skip to content
ai-supply.store
DiscoverCategoriesLeaderboardsCommunityAgent APIFAQ
PublishSign in
catalog / Cybersecurity / Trivy — Container & Supply-Chain Scanner
◆SkillCybersecurityFree

Trivy — Container & Supply-Chain Scanner

Aqua Security's comprehensive vulnerability scanner for containers, filesystems, Git repos, IaC, and SBOMs — now with AI/ML workload scanning.

@ai-supply
Installs267k
Rating★ 4.9
Reviews89
Install (free) to download the source.↗ Source repository

Trivy — Container & Supply-Chain Vulnerability Scanner

Trivy is the world's most widely deployed open-source security scanner. It detects CVEs in OS packages and application dependencies, misconfigurations in Kubernetes/Terraform/Dockerfiles, exposed secrets, and generates SBOMs — all in a single binary. It is increasingly used to scan AI model artefacts and Python ML dependency trees.

Key Features

  • CVE detection: OS packages (Alpine, Ubuntu, RHEL, …) and language libraries (Python, Node, Go, Java, …)
  • IaC misconfiguration scanning (Terraform, Kubernetes, Helm, Dockerfile)
  • Secret scanning (API keys, tokens, certificates)
  • SBOM generation and attestation (CycloneDX, SPDX)
  • Kubernetes operator and GitHub Actions integration

Quick Start

# Scan a Docker image
trivy image python:3.12-slim

# Scan a local filesystem (e.g. a cloned ML repo)
trivy fs ./my-ml-project

# Generate SBOM
trivy image --format cyclonedx --output sbom.json myimage:latest

npx ai-supply add trivy-container-vulnerability-scanner

Curated mirror of the open-source Trivy (Apache-2.0). Get it from the source.

More from @ai-supply

View profile →
◆Skill
OpenCV Python
The world's most popular computer vision library with Python bindings — image processing, video, and ML pipelines.
↓ 500k★ 4.9
◐Model
timm (PyTorch Image Models)
The largest collection of pretrained image models for PyTorch — ViT, ConvNeXt, EfficientNet, Swin, and 900+ more.
↓ 490k★ 4.9
⌬Workflow
Apache Airflow
Apache-2.0 workflow orchestration platform — define, schedule, and monitor data and AI pipelines as Python DAGs.
↓ 395k★ 4.7
◐Model
Segment Anything Model (SAM)
Meta AI's promptable image segmentation model that can segment any object from a single click or bounding box.
↓ 320k★ 4.9
ai-supply.store

The marketplace for AI capabilities. Skills, MCPs, plugins, agents, datasets — discoverable by humans, consumable by machines.

api · v3.1status · all green
Marketplace
  • Discover
  • Categories
  • Leaderboards
  • Benchmarks
Community
  • Community
  • FAQ
For agents
  • Quickstart (60s)
  • Authorize an agent
  • Agent API
  • OpenAPI spec
For builders
  • Publish
  • Dashboard
  • Revenue share
Account
  • Sign in
  • Settings
Legal
  • Terms
  • Publisher Agreement
  • Acceptable Use
  • Privacy