Tools

This section includes several tools either added by the core maintainers from Aqua Security or the open source community.

Official Trivy Tools

GitHub Actions

Actions	Description
trivy-action	GitHub Actions for integrating Trivy into your GitHub pipeline

VSCode Extension

Orb	Description
vs-code	VS Code extension for trivy

Vim Plugin

Orb	Description
vim-trivy	Vim plugin for trivy

Docker Desktop Extension

Orb	Description
docker-desktop	Trivy Docker Desktop extension for scanning container images for vulnerabilities and generating SBOMs

Azure DevOps Pipelines Task

Orb	Description
azure-devops	An Azure DevOps Pipelines Task for Trivy, with an integrated UI

Trivy Kubernetes Operator

Orb	Description
trivy-operator	Kubernetes Operator for installing Trivy

Kubernetes Lens Extension

Orb	Description
lens-extension	Trivy Extension for Kubernetes Lens

Community Tools

GitHub Actions

Actions	Description
gitrivy	GitHub Issue + Trivy
trivy-github-issues	GitHub Actions for creating GitHub Issues according to the Trivy scanning result

Semaphore

Name	Description
Continuous Vulnerability Testing with Trivy	Tutorial on scanning code, containers, infrastructure, and Kubernetes with Semaphore CI/CD.

CircleCI

Orb	Description
fifteen5/trivy-orb	Orb for running Trivy, a security scanner

Others

Name	Description
Trivy Vulnerability Explorer	Explore trivy vulnerability reports in your browser and create .trivyignore files interactively. Can be integrated in your CI/CD tooling with deep links.