Seal Security

EXPERIMENTAL

Scanning results may be inaccurate.

While it is not an OS, this page describes the details of the Seal Security vulnerability feed. Seal provides security advisories and patched versions for multiple Linux distributions, including Debian, Ubuntu, Alpine, Red Hat Enterprise Linux, CentOS, Oracle Linux, and Azure Linux (CBL‑Mariner).

Seal advisories are used when Trivy finds packages that indicate Seal-provided components:

• Packages whose name or source name starts with seal- (for example, seal-wget, seal-zlib).

When such Seal packages are detected, Trivy automatically enables Seal scanning for those packages while continuing to use the base OS scanner for the rest.

Note

For vulnerabilities, Trivy prefers severity from the base OS vendor when available.

For details on supported scanners, features, and behavior for each base OS, refer to their respective pages:

• Debian
• Ubuntu
• Alpine
• Red Hat Enterprise Linux
• CentOS
• Oracle Linux
• Azure Linux (CBL‑Mariner)