aquasecurity
diff --git a/‎docs/docs/coverage/others/index.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/coverage/others/index.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/coverage/others/rootio.md
Lines changed: 20 additions & 0 deletions b/‎docs/docs/coverage/others/rootio.md
Lines changed: 20 additions & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_filesystem.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_filesystem.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_image.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_image.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_kubernetes.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_kubernetes.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_repository.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_repository.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_rootfs.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_rootfs.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_sbom.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_sbom.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/references/configuration/cli/trivy_vm.md
Lines changed: 1 addition & 0 deletions b/‎docs/docs/references/configuration/cli/trivy_vm.md
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/docs/scanner/vulnerability.md
Lines changed: 2 additions & 0 deletions b/‎docs/docs/scanner/vulnerability.md
Lines changed: 2 additions & 0 deletions
@@ -15,6 +15,7 @@ Trivy supports them for
 | [Bitnami packages](bitnami.md) | `/opt/bitnami/<component>/.spdx-<component>.spdx`   |     ✅     |     ✅      |       -        |       -        |
 | [Conda](conda.md)              | `<conda-root>/envs/<env>/conda-meta/<package>.json` |     ✅     |     ✅      |       -        |       -        |
 |                                | `environment.yml`                                   |     -     |     -      |       ✅        |       ✅        |
+| [Root.io images](rootio.md)    | -                                                   |     ✅     |     ✅      |       -        |       -        |
 | [RPM Archives](rpm.md)         | `*.rpm`                                             |   ✅[^5]   |   ✅[^5]    |     ✅[^5]      |     ✅[^5]      |
 
 [sbom]: ../../supply-chain/sbom.md
 
@@ -0,0 +1,20 @@
+# Root.io
+
+!!! warning "EXPERIMENTAL"
+    Scanning results may be inaccurate.
+
+While it is not an OS, this page describes the details of [Root.io](https://root.io/) patch distribution service.
+Root.io provides security patches for [Debian](../os/debian.md), [Ubuntu](../os/ubuntu.md), and [Alpine](../os/alpine.md)-based container images.
+Root.io patches are detected when Trivy finds packages with specific version suffixes:
+
+- **Debian/Ubuntu**: packages with `.root.io` in version string
+- **Alpine**: packages with `-r\d007\d` pattern in version string (e.g., `-r10071`, `-r20072`)
+
+When Root.io patches are detected, Trivy automatically switches to Root.io scanning mode for vulnerability detection.
+Even when the original OS distributor (Debian, Ubuntu, Alpine) has not provided a patch for a vulnerability, Trivy will display Root.io patches if they are available.
+
+For detailed information about supported scanners, features, and functionality, please refer to the documentation for the underlying OS:
+
+- [Debian](../os/debian.md)
+- [Ubuntu](../os/ubuntu.md) 
+- [Alpine](../os/alpine.md)
@@ -169,6 +169,7 @@ trivy filesystem [flags] PATH
                                             - govulndb
                                             - echo
                                             - minimos
+                                            - rootio
                                             - auto
                                            (default [auto])
 ```
 
@@ -190,6 +190,7 @@ trivy image [flags] IMAGE_NAME
                                             - govulndb
                                             - echo
                                             - minimos
+                                            - rootio
                                             - auto
                                            (default [auto])
 ```
 
@@ -178,6 +178,7 @@ trivy kubernetes [flags] [CONTEXT]
                                             - govulndb
                                             - echo
                                             - minimos
+                                            - rootio
                                             - auto
                                            (default [auto])
 ```
 
@@ -168,6 +168,7 @@ trivy repository [flags] (REPO_PATH | REPO_URL)
                                             - govulndb
                                             - echo
                                             - minimos
+                                            - rootio
                                             - auto
                                            (default [auto])
 ```
 
@@ -170,6 +170,7 @@ trivy rootfs [flags] ROOTDIR
                                             - govulndb
                                             - echo
                                             - minimos
+                                            - rootio
                                             - auto
                                            (default [auto])
 ```
 
@@ -139,6 +139,7 @@ trivy sbom [flags] SBOM_PATH
                                          - govulndb
                                          - echo
                                          - minimos
+                                         - rootio
                                          - auto
                                         (default [auto])
 ```
 
@@ -155,6 +155,7 @@ trivy vm [flags] VM_IMAGE
                                             - govulndb
                                             - echo
                                             - minimos
+                                            - rootio
                                             - auto
                                            (default [auto])
 ```
 
@@ -37,6 +37,7 @@ See [here](../coverage/os/index.md#supported-os) for the supported OSes.
 | Azure Linux (CBL-Mariner) | [OVAL][azure]                                                |
 | OpenSUSE/SLES             | [CVRF][suse]                                                 |
 | Photon OS                 | [Photon Security Advisory][photon]                           |
+| Root.io                   | [Root.io Patch Feed][rootio]                                 |
 
 #### Data Source Selection
 Trivy **only** consumes security advisories from the sources listed in the above table.
@@ -394,6 +395,7 @@ Example logic for the following vendor severity levels when scanning an Alpine i
 [suse]: http://ftp.suse.com/pub/projects/security/cvrf/
 [photon]: https://packages.vmware.com/photon/photon_cve_metadata/
 [azure]: https://github.com/microsoft/AzureLinuxVulnerabilityData/
+[rootio]: https://api.root.io/external/patch_feed
 
 [php-ghsa]: https://github.com/advisories?query=ecosystem%3Acomposer
 [python-ghsa]: https://github.com/advisories?query=ecosystem%3Apip