Search results

chore: Update the rpm generator script to use the new download path

kind/cleanupCategorizes issue or PR as related to cleaning up code, process, or technical debt.Categorizes issue or PR as related to cleaning up code, process, or technical debt.

Status: Open.

#9201 In aquasecurity/trivy;

· owenrumney opened on Jul 15, 2025

bug(vulnerability): <code>--vuln-severity-source</code> doesn't work for package-specific severity (e.g. Debian)

kind/bugCategorizes issue or PR as related to a bug.Categorizes issue or PR as related to a bug.

scan/vulnerabilityIssues relating to vulnerability scanningIssues relating to vulnerability scanning

Status: Open.

Bug

#9191 In aquasecurity/trivy;

· DmitriyLewen opened on Jul 14, 2025

· 

v0.65.0

refactor(checks): Revise AVD-AWS-0008 to reflect default SSE-S3 encryption in S3

scan/misconfigurationIssues relating to misconfiguration scanningIssues relating to misconfiguration scanning

Status: Open.

#9141 In aquasecurity/trivy;

· nikpivkin opened on Jul 4, 2025

fix(cli): Add support for telemetry from the config file

Status: Open.

#9121 In aquasecurity/trivy;

· owenrumney opened on Jul 2, 2025

feat: add SHA-512 hash support for SBOM formats (CycloneDX and SPDX)

good first issueDenotes an issue ready for a new contributor, according to the "help wanted" guidelines.Denotes an issue ready for a new contributor, according to the "help wanted" guidelines.

help wantedDenotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.

kind/featureCategorizes issue or PR as related to a new feature.Categorizes issue or PR as related to a new feature.

scan/sbomIssues relating to SBOMIssues relating to SBOM

Status: Open.

Feature

#9094 In aquasecurity/trivy;

· knqyf263 opened on Jun 30, 2025

· 

v0.65.0

feat(misconf): Add "via" hierarchy to Sarif output

kind/featureCategorizes issue or PR as related to a new feature.Categorizes issue or PR as related to a new feature.

scan/misconfigurationIssues relating to misconfiguration scanningIssues relating to misconfiguration scanning

target/filesystemIssues relating to filesystem scanningIssues relating to filesystem scanning

Status: Open.

#9076 In aquasecurity/trivy;

· simar7 opened on Jun 25, 2025

bug(pom): incorrect inheritance of properties from pom fields for nested parents.

kind/bugCategorizes issue or PR as related to a bug.Categorizes issue or PR as related to a bug.

Status: Open.

#9067 In aquasecurity/trivy;

· DmitriyLewen opened on Jun 24, 2025

· 

v0.65.0

BREAKING: Deprecate <code>avd_id</code> and <code>short_code</code> for misconfiguration checks

kind/breakingCategorizes issue or PR as related to breaking compatibility.Categorizes issue or PR as related to breaking compatibility.

scan/misconfigurationIssues relating to misconfiguration scanningIssues relating to misconfiguration scanning

Status: Open.

#9064 In aquasecurity/trivy;

· simar7 opened on Jun 23, 2025

· 

v0.65.0

feat(license): use separate SPDX ids to ignore SPDX expressions

help wantedDenotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.

kind/featureCategorizes issue or PR as related to a new feature.Categorizes issue or PR as related to a new feature.

scan/licenseIssues relating to license scanningIssues relating to license scanning

Status: Open.

#9045 In aquasecurity/trivy;

· DmitriyLewen opened on Jun 18, 2025

refactor(azure): migrate from custom JSON parser

scan/misconfigurationIssues relating to misconfiguration scanningIssues relating to misconfiguration scanning

Status: Open.

#9025 In aquasecurity/trivy;

· nikpivkin opened on Jun 10, 2025

bug(sbom): Packages with infinite loop dependencies are not associated with an OS component

kind/bugCategorizes issue or PR as related to a bug.Categorizes issue or PR as related to a bug.

Status: Open.

Bug

#9011 In aquasecurity/trivy;

· DmitriyLewen opened on Jun 9, 2025

bug: Trivy doesnt remove duplicate <code>Packages</code> received from SBOM + from the <code>Analyzer</code> interface

kind/bugCategorizes issue or PR as related to a bug.Categorizes issue or PR as related to a bug.

Status: Open.

#8993 In aquasecurity/trivy;

· DmitriyLewen opened on Jun 5, 2025