Skip to content
Trivy
AWS CodePipeline
Initializing search
GitHub
Getting Started
Tutorials
Docs
Ecosystem
Contributing
Trivy
GitHub
Getting Started
Getting Started
Overview
Installation
Signature Verification
FAQ
Tutorials
Tutorials
Overview
CI/CD
CI/CD
Overview
GitHub Actions
CircleCI
Travis CI
GitLab CI
Bitbucket Pipelines
AWS CodePipeline
AWS Security Hub
Azure
Kubernetes
Kubernetes
Cluster Scanning
Kyverno
GitOps
Misconfiguration
Misconfiguration
Terraform scanning
Custom Checks with Rego
Signing
Signing
Vulnerability Scan Record Attestation
Shell
Shell
Completion
Additional Resources
Additional Resources
Additional Resources
Community References
CKS Reference
Docs
Docs
Overview
Target
Target
Container Image
Filesystem
Rootfs
Code Repository
Virtual Machine Image
Kubernetes
AWS
SBOM
Scanner
Scanner
Vulnerability
Misconfiguration
Misconfiguration
Overview
Policy
Policy
Built-in Checks
Exceptions
Custom Checks
Custom Checks
Overview
Data
Combine
Selectors
Schemas
Testing
Debugging Policies
Contribute Checks
Secret
License
Coverage
Coverage
Overview
OS
OS
Overview
AlmaLinux
Alpine Linux
Amazon Linux
Azure Linux (CBL-Mariner)
CentOS
Chainguard
Debian
Oracle Linux
Photon OS
Red Hat
Rocky Linux
SUSE
Ubuntu
Wolfi
Google Distroless (Images)
Language
Language
Overview
C/C++
Dart
.NET
Elixir
Go
Java
Node.js
PHP
Python
Ruby
Rust
Swift
Julia
IaC
IaC
Overview
Azure ARM Template
CloudFormation
Docker
Helm
Kubernetes
Terraform
Others
Others
Bitnami Images
Conda
RPM Archives
Kubernetes
Configuration
Configuration
Overview
Filtering
Skipping Files
Reporting
Cache
DB
Others
Supply Chain
Supply Chain
SBOM
Attestation
Attestation
SBOM
Cosign Vulnerability Scan Record
SBOM Attestation in Rekor
VEX
VEX
Overview
VEX Repository
Local VEX Files
VEX Attestation
Compliance
Compliance
Built-in Compliance
Custom Compliance
Plugins
Plugins
Overview
User guide
Developer guide
Advanced
Advanced
Modules
Advanced Network Scenarios
Container Image
Container Image
Embed in Dockerfile
Unpacked container image filesystem
Private Docker Registries
Private Docker Registries
Overview
Docker Hub
AWS ECR (Elastic Container Registry)
GCR (Google Container Registry)
ACR (Azure Container Registry)
Self-Hosted
References
References
Configuration
Configuration
CLI
CLI
Overview
Clean
Config
Convert
Filesystem
Image
Kubernetes
Module
Module
Module
Module Install
Module Uninstall
Plugin
Plugin
Plugin
Plugin Info
Plugin Install
Plugin List
Plugin Run
Plugin Uninstall
Plugin Update
Plugin Upgrade
Plugin Search
Repository
Rootfs
SBOM
Server
Version
VEX
VEX
VEX
VEX Download
VEX Init
VEX List
VEX Repo
VM
Config file
Modes
Modes
Standalone
Client/Server
Troubleshooting
Ecosystem
Ecosystem
Overview
CI/CD
IDE and Dev tools
Production and Clouds
Reporting
Contributing
Contributing
Principles
How to contribute
How to contribute
Issues
Discussions
Pull Requests
Contribute Rego Checks
Contribute Rego Checks
Overview
Add Service Support
Maintainer
Maintainer
Release Flow
Backporting
Help Wanted
Triage
AWS CodePipeline
See
this blog post
for an example of using Trivy within AWS CodePipeline.