Trivy

IaC Scanning Commands

Scan Infrastructure as Code files for misconfigurations and security policy violations.

4 commands

Pro Tips

Use --compliance for CIS benchmark checks

$ trivy config ./terraform

Scan Terraform files for misconfigurations.

$ trivy config ./k8s-manifests

Scan Kubernetes manifests.

$ trivy config --compliance docker-cis ./

Run compliance benchmark checks.

$ trivy config Dockerfile

Scan Dockerfile for issues.