aquasecurity/trivy Issues | Good First Issue

Go (35,000 stars) (371 forks) (19 indexed issues) (PR metrics pending)Last commit May 14, 2026

Issues

17 open indexed issues

RSS Atom

Open

fix(nodejs): silently skip package.json files with invalid names

good first issue

aquasecurity/trivy #10,607 opened 26 days ago · Go · 35,000 stars

0 comments0 reactions0 assignees

Open

feat(java): Support for Maven 4 settings.xml

help wantedkind/featuretarget/filesystem

aquasecurity/trivy #9,908 opened 6 months ago · Go · 35,000 stars

2 comments0 reactions0 assignees

Open

enhancement(cyclonedx): use `component.evidence.occurrences.location` for filapaths and linenumber

help wanted

aquasecurity/trivy #9,832 opened 6 months ago · Go · 35,000 stars

0 comments1 reaction0 assignees

Open

feat(opensuse): add `MicroOS` and `Leap Micro` support

help wantedscan/vulnerability

aquasecurity/trivy #8,409 opened last year · Go · 35,000 stars

1 comment0 reactions0 assignees

Open

feat: add flag to pass credentials to different Git hosting platforms

help wantedkind/featuretarget/repository

aquasecurity/trivy #6,833 opened 2 years ago · Go · 35,000 stars

1 comment6 reactions0 assignees

Open

fix: scan `.git/config` for secrets

help wantedscan/secret

aquasecurity/trivy #6,699 opened 2 years ago · Go · 35,000 stars

2 comments5 reactions1 assignee

Open

Python ZIP Application Support

help wantedkind/featurepriority/backlogscan/vulnerability

aquasecurity/trivy #4,240 opened 3 years ago · Go · 35,000 stars

3 comments1 reaction0 assignees

Open

Configurable log format using trivy server

help wantedkind/featurepriority/backlog

aquasecurity/trivy #3,300 opened 3 years ago · Go · 35,000 stars

1 comment0 reactions0 assignees

Open

Trivy filesystem scan failing for Windows os filesystem

help wantedkind/buglifecycle/active

aquasecurity/trivy #3,259 opened 3 years ago · Go · 35,000 stars

4 comments1 reaction0 assignees

Open

template output in Kubernetes scanning

help wantedkind/featurelifecycle/activetarget/kubernetes

aquasecurity/trivy #3,234 opened 3 years ago · Go · 35,000 stars

8 comments0 reactions0 assignees

Open

Including invocation startTime and endTime in SARIF output

good first issuehelp wantedkind/featurelifecycle/frozen

aquasecurity/trivy #3,226 opened 4 years ago · Go · 35,000 stars

4 comments0 reactions0 assignees

Open

Support for CRI-O

help wantedkind/featurepriority/backlog

aquasecurity/trivy #3,004 opened 4 years ago · Go · 35,000 stars

3 comments0 reactions0 assignees

Open

Required docker images for arm64

help wantedkind/featurelifecycle/frozen

aquasecurity/trivy #2,715 opened 4 years ago · Go · 35,000 stars

6 comments0 reactions0 assignees

Open

Add support to conda lock files

help wantedkind/featurepriority/backlogscan/vulnerability

aquasecurity/trivy #1,856 opened 4 years ago · Go · 35,000 stars

14 comments10 reactions0 assignees

Open

--no-color option

good first issuehelp wantedkind/feature

aquasecurity/trivy #1,091 opened 5 years ago · Go · 35,000 stars

18 comments15 reactions0 assignees

Open

--vuln-type library returning null in JSON when no vulnerabilites are found

help wantedkind/featurepriority/important-longterm

aquasecurity/trivy #828 opened 5 years ago · Go · 35,000 stars

14 comments0 reactions0 assignees

Open

Support Fedora

help wantedkind/featurepriority/backlogscan/vulnerability

aquasecurity/trivy #121 opened 7 years ago · Go · 35,000 stars

19 comments30 reactions0 assignees