Discussions

• 1 You must be logged in to vote

  📢

  v0.67.0

  aqua-bot announced Sep 30, 2025 in Announcements

  

  

  0
• 1 You must be logged in to vote

  🙏

  CVE-2025-49844 Redis vulnerability score 10.0 not detected

  triage/support Indicates an issue that is a support question. scan/vulnerability Issues relating to vulnerability scanning

  bedla asked Oct 6, 2025 in Q&A · Answered

  

  

  

  

  8
• 2 You must be logged in to vote

  🐛

  trivy config: rego_compile_error: error limit reached

  kind/bug Categorizes issue or PR as related to a bug.

  nick-secureframe started Oct 8, 2025 in Bugs · Closed

  

  

  

  

  6
• 1 You must be logged in to vote

  🐛

  unable to parse terraform plan file "Invalid expression; Expected the start of an expression, but found an invalid expression token."

  kind/bug Categorizes issue or PR as related to a bug.

  hloeffler started Nov 28, 2024 in Bugs · Closed

  

  

  

  

  9
• 20 You must be logged in to vote

  🔎

  AVD-AZU-0012 finding when scanning any terraform code

  Malcolm-GetAHead started Oct 8, 2025 in False Detection · Closed

  

  

  

  

  9
• 1 You must be logged in to vote

  🐛

  Bug after last release on aws/ec2/specify_ami_owners.rego:32:

  kind/bug Categorizes issue or PR as related to a bug.

  matdtr started Oct 9, 2025 in Bugs · Closed

  

  

  5
• 1 You must be logged in to vote

  📢

  v0.67.1

  aqua-bot announced Oct 9, 2025 in Announcements

  

  

  0
• 1 You must be logged in to vote

  🔎

  Trivy Terraform config scan reporting a finding with an Azure resource, when Azure is not used

  adrawbond-alto started Oct 8, 2025 in False Detection · Closed

  

  

  0
• 5 You must be logged in to vote

  🐛

  AVD-AZU-0012 being reported since trivy-checks release v1.12.0?

  kind/bug Categorizes issue or PR as related to a bug.

  ricardo-kh started Oct 8, 2025 in Bugs · Closed

  

  

  1
• 1 You must be logged in to vote

  🔎

  getting Azure vulnerabilities in scan of Terraform folder

  pfrydids started Oct 8, 2025 in False Detection · Closed

  

  

  1
• 1 You must be logged in to vote

  🐛

  Trivy incorrectly reports "UNLICENSED" software as "Unencumbered"

  kind/bug Categorizes issue or PR as related to a bug.

  nartreb started Sep 19, 2025 in Bugs · Closed

  

  

  

  

  5
• 1 You must be logged in to vote

  🐛

  trivy fs . --detection-priority comprehensive throws Invalid package name/version in requirements.txt

  kind/bug Categorizes issue or PR as related to a bug.

  raghur-orca started Oct 8, 2025 in Bugs · Closed

  

  

  1
• 1 You must be logged in to vote

  🐛

  Trivy kubernetes scans return resources without a namespace

  kind/bug Categorizes issue or PR as related to a bug.

  oatovar started May 21, 2025 in Bugs · Closed

  

  

  3
• 1 You must be logged in to vote

  🙏

  Need clarification OS Vendor vs programming langage

  triage/support Indicates an issue that is a support question. scan/vulnerability Issues relating to vulnerability scanning

  sekveaja asked Oct 6, 2025 in Q&A · Unanswered

  

  

  1
• 1 You must be logged in to vote

  💡

  Allow to configure imagePullSecret to run trivy job

  kind/feature Categorizes issue or PR as related to a new feature. scan/vulnerability Issues relating to vulnerability scanning target/kubernetes Issues relating to kubernetes cluster scanning

  andylim0221 started Oct 2, 2025 in Ideas · Closed

  

  

  2
• 2 You must be logged in to vote

  🐛

  Trivy must report timeouts as an error/warn

  kind/bug Categorizes issue or PR as related to a bug.

  SebastienPi started Oct 3, 2025 in Bugs

  

  

  

  

  3
• 1 You must be logged in to vote

  🐛

  Version 0.66.0 not authorized with AWS

  kind/bug Categorizes issue or PR as related to a bug.

  jscancella started Sep 3, 2025 in Bugs · Closed

  

  

  

  

  28
• 1 You must be logged in to vote

  🙏

  Trivy did not find any dependencies with requirements.txt

  triage/support Indicates an issue that is a support question.

  aydinnyunus asked Oct 6, 2025 in Q&A · Closed · Answered

  

  

  3
• 1 You must be logged in to vote

  🐛

  VEX not suppressing vulnerabilities after v0.67.0

  kind/bug Categorizes issue or PR as related to a bug.

  ricardbejarano started Oct 5, 2025 in Bugs · Closed

  

  

  2
• 1 You must be logged in to vote

  🙏

  CSAF example not working

  triage/support Indicates an issue that is a support question. scan/vulnerability Issues relating to vulnerability scanning

  santiagorr asked Dec 23, 2024 in Q&A · Closed · Answered

  

  

  

  

  6
• 1 You must be logged in to vote

  👨‍💻

  0-deb security advisory support in Trivy

  raianand started Oct 1, 2025 in Development

  

  

  

  

  3
• 1 You must be logged in to vote

  🔎

  Issue Mapping Java Libraries: Incorrect Vulnerability Reporting for io.grpc:grpc-netty-shaded and netty-codec-http2

  avula-sudheer started Oct 4, 2025 in False Detection

  

  

  1
• 1 You must be logged in to vote

  🙏

  Trivy ignores VEX document and misses ExperimentalModifiedFindings key in JSON output

  triage/support Indicates an issue that is a support question. scan/vulnerability Issues relating to vulnerability scanning

  delsner asked Sep 29, 2025 in Q&A · Unanswered

  

  

  9
• 1 You must be logged in to vote

  🙏

  CVE-2024-48510 has wrong severity

  triage/support Indicates an issue that is a support question. scan/vulnerability Issues relating to vulnerability scanning

  mymichu asked Oct 2, 2025 in Q&A · Unanswered

  

  

  1
• 3 You must be logged in to vote

  🔎

  Typo in fixed version for io.grpc:grpc-netty-shaded (CVE-2025-55163)

  mansguiche started Sep 30, 2025 in False Detection · Closed

  

  

  2