Thursday, January 18, 2024

Trivy Code Vulnerability report

Trivy provides Third party library vulnerability report along with security key exposure in your code.

The tool also provides the version in which the vulnerability is fixed.

You can use the below steps to get a report by checkout the code from your repo:

Go to https://github.com/aquasecurity/trivy/releases/download/v0.48.3/trivy_0.48.3_windows-64bit.zip

Download the zip

Extract the folder

Goto <Extracted Folder>\trivy_0.48.3_windows-64bit

Open command line from above folder

run the below command

trivy fs <codebase path in local m/c>

This will print the vulnerability in command prompt

In case you want to write in file 

trivy fs "<codebase path in local m/c>" > <file_name>.txt

Further reading:

https://trivy.dev/


-
Labels:

2 comments:

Anonymous said...

Informative. Thanks for sharing.

January 18, 2024 at 5:36 PM
Koushik said...

Great Post!! Super useful

January 18, 2024 at 5:38 PM

Post a Comment

Subscribe to: Post Comments (Atom)

RabbitVCS Install in Ubuntu

First run below command from terminal sudo apt-get install python3-configobj python3-gtkspellcheck python3-svn subversion python3-dulwich py...

  • How to do a full-text search in SVN repository
    SVN clients like TortoiseSVN does not come with the content search support. It can be done by using Git SCM client. Installation: Ple...
  • Externalize of properties file in Tomcat
    Below is the approach that can be used for externalize ApplicationResource properties file in Tomcat 7 & 9. Steps: 1.       ...
  • Semgrep
    Semgrep is used for SAST tool. Steps to get the SAST report: Checkout the code in your local directory from Github. Goto https://semgrep.dev...