https://github.com/aquasecurity/trivy
· scanned 2026-06-04 04:11 UTC (1 day, 13 hours ago)
· 10 languages
259 findings (135 legacy + 124 scanner) 11/13 scanners ran 70th percentile · Go · large (100-500K LoC) Scanner says 74 (higher by 14)
Last scanned 1 day, 13 hours ago · v2 · 197 findings from 2 sources. Findings combine the legacy security pipeline AND the multi-layer engine (atlas, wiring, flows, ranked) AND verified AI agent contributions.
| Component | Sub-score | Weight | Contribution |
|---|---|---|---|
structure_score |
85.0 | 0.15 | 12.75 |
security_score |
100.0 | 0.25 | 25.00 |
testing_score |
85.0 | 0.20 | 17.00 |
documentation_score |
88.0 | 0.15 | 13.20 |
practices_score |
86.0 | 0.15 | 12.90 |
code_quality |
75.0 | 0.10 | 7.50 |
| Overall | 1.00 | 88.3 |
All 4101 nodes from the latest scan, grouped by kind. Each node is a unit the engine identified (file, function, endpoint, table…). Most users won't need this view — it's primarily for debugging the engine's graph extraction or for AI agents that want to enumerate the project structure.
| Label | Layer | Status | Path |
|---|---|---|---|
mkdocs.yml |
software | healthy | mkdocs.yml |
release-please-config.json |
software | healthy | release-please-config.json |
README.md |
software | healthy | README.md |
buf.gen.yaml |
software | healthy | buf.gen.yaml |
CONTRIBUTING.md |
software | healthy | CONTRIBUTING.md |
Dockerfile |
software | healthy | Dockerfile |
buf.yaml |
software | healthy | buf.yaml |
go.mod |
software | healthy | go.mod |
.release-please-manifest.json |
software | healthy | .release-please-manifest.json |
.golangci.yaml |
software | healthy | .golangci.yaml |
zizmor.yml |
software | healthy | zizmor.yml |
SECURITY.md |
software | healthy | SECURITY.md |
CHANGELOG.md |
software | healthy | CHANGELOG.md |
goreleaser.yml |
software | healthy | goreleaser.yml |
goreleaser-canary.yml |
software | healthy | goreleaser-canary.yml |
readme.md |
software | healthy | brand/readme.md |
client_server_test.go |
software | healthy | integration/client_server_test.go |
integration_test.go |
software | healthy | integration/integration_test.go |
k8s_test.go |
software | healthy | integration/k8s_test.go |
README.md |
software | healthy | integration/README.md |
config_test.go |
software | healthy | integration/config_test.go |
plugin_test.go |
software | healthy | integration/plugin_test.go |
sbom_test.go |
software | healthy | integration/sbom_test.go |
convert_test.go |
software | healthy | integration/convert_test.go |
registry_test.go |
software | healthy | integration/registry_test.go |
repo_test.go |
software | healthy | integration/repo_test.go |
module_test.go |
software | healthy | integration/module_test.go |
standalone_tar_test.go |
software | healthy | integration/standalone_tar_test.go |
vm_test.go |
software | healthy | integration/vm_test.go |
docker_engine_test.go |
software | healthy | integration/docker_engine_test.go |
test_nginx.yaml |
software | healthy | integration/testdata/fixtures/k8s/test_nginx.yaml |
limited-role.yaml |
software | healthy | integration/testdata/fixtures/k8s/limited-role.yaml |
limited-binding.yaml |
software | healthy | integration/testdata/fixtures/k8s/limited-binding.yaml |
limited-pod.yaml |
software | healthy | integration/testdata/fixtures/k8s/limited-pod.yaml |
repository.yaml |
software | healthy | integration/testdata/fixtures/vex/config/repository.yaml |
openvex.json |
software | healthy | integration/testdata/fixtures/vex/file/openvex.json |
vex-repository.json |
software | healthy | integration/testdata/fixtures/vex/repositories/default/vex-… |
index.json |
software | healthy | integration/testdata/fixtures/vex/repositories/default/0.1/… |
fluentd-multiple-lockfiles-cyclonedx.json |
software | healthy | integration/testdata/fixtures/sbom/fluentd-multiple-lockfil… |
minikube-kbom.json |
software | healthy | integration/testdata/fixtures/sbom/minikube-kbom.json |
centos-7-cyclonedx.json |
software | healthy | integration/testdata/fixtures/sbom/centos-7-cyclonedx.json |
centos-7-spdx.json |
software | healthy | integration/testdata/fixtures/sbom/centos-7-spdx.json |
license-cyclonedx.json |
software | healthy | integration/testdata/fixtures/sbom/license-cyclonedx.json |
alpine.yaml |
software | healthy | integration/testdata/fixtures/db/alpine.yaml |
vulnerability.yaml |
software | healthy | integration/testdata/fixtures/db/vulnerability.yaml |
k8s.yaml |
software | healthy | integration/testdata/fixtures/db/k8s.yaml |
ruby.yaml |
software | healthy | integration/testdata/fixtures/db/ruby.yaml |
nuget.yaml |
software | healthy | integration/testdata/fixtures/db/nuget.yaml |
mariner.yaml |
software | healthy | integration/testdata/fixtures/db/mariner.yaml |
pub.yaml |
software | healthy | integration/testdata/fixtures/db/pub.yaml |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
brand |
software | healthy | brand |
integration |
software | healthy | integration |
testdata |
software | healthy | integration/testdata |
fixtures |
software | healthy | integration/testdata/fixtures |
k8s |
software | healthy | integration/testdata/fixtures/k8s |
vex |
software | healthy | integration/testdata/fixtures/vex |
config |
software | healthy | integration/testdata/fixtures/vex/config |
file |
software | healthy | integration/testdata/fixtures/vex/file |
repositories |
software | healthy | integration/testdata/fixtures/vex/repositories |
default |
software | healthy | integration/testdata/fixtures/vex/repositories/default |
0.1 |
software | healthy | integration/testdata/fixtures/vex/repositories/default/0.1 |
sbom |
software | healthy | integration/testdata/fixtures/sbom |
db |
software | healthy | integration/testdata/fixtures/db |
repo |
software | healthy | integration/testdata/fixtures/repo |
custom-policy |
software | healthy | integration/testdata/fixtures/repo/custom-policy |
dotnet |
software | healthy | integration/testdata/fixtures/repo/dotnet |
pnpm |
software | healthy | integration/testdata/fixtures/repo/pnpm |
composer |
software | healthy | integration/testdata/fixtures/repo/composer |
julia |
software | healthy | integration/testdata/fixtures/repo/julia |
dockerfile |
software | healthy | integration/testdata/fixtures/repo/dockerfile |
cargo |
software | healthy | integration/testdata/fixtures/repo/cargo |
helm_values |
software | healthy | integration/testdata/fixtures/repo/helm_values |
pip |
software | healthy | integration/testdata/fixtures/repo/pip |
npm |
software | healthy | integration/testdata/fixtures/repo/npm |
composer-vendor |
software | healthy | integration/testdata/fixtures/repo/composer-vendor |
terraform |
software | healthy | integration/testdata/fixtures/repo/terraform |
remote-submodule |
software | healthy | integration/testdata/fixtures/repo/terraform/remote-submodu… |
opentofu-registry |
software | healthy | integration/testdata/fixtures/repo/terraform/opentofu-regis… |
remote-module |
software | healthy | integration/testdata/fixtures/repo/terraform/remote-module |
remote-module-in-child |
software | healthy | integration/testdata/fixtures/repo/terraform/remote-module-… |
modules |
software | healthy | integration/testdata/fixtures/repo/terraform/remote-module-… |
s3 |
software | healthy | integration/testdata/fixtures/repo/terraform/remote-module-… |
terraform-registry |
software | healthy | integration/testdata/fixtures/repo/terraform/terraform-regi… |
pylock |
software | healthy | integration/testdata/fixtures/repo/pylock |
gomod |
software | healthy | integration/testdata/fixtures/repo/gomod |
submod |
software | healthy | integration/testdata/fixtures/repo/gomod/submod |
submod2 |
software | healthy | integration/testdata/fixtures/repo/gomod/submod2 |
secrets |
software | healthy | integration/testdata/fixtures/repo/secrets |
conda |
software | healthy | integration/testdata/fixtures/repo/conda |
miniconda3 |
software | healthy | integration/testdata/fixtures/repo/conda/miniconda3 |
envs |
software | healthy | integration/testdata/fixtures/repo/conda/miniconda3/envs |
testenv |
software | healthy | integration/testdata/fixtures/repo/conda/miniconda3/envs/te… |
conda-meta |
software | healthy | integration/testdata/fixtures/repo/conda/miniconda3/envs/te… |
pom |
software | healthy | integration/testdata/fixtures/repo/pom |
conda-environment |
software | healthy | integration/testdata/fixtures/repo/conda-environment |
yarn |
software | healthy | integration/testdata/fixtures/repo/yarn |
poetry |
software | healthy | integration/testdata/fixtures/repo/poetry |
helm_badname |
software | healthy | integration/testdata/fixtures/repo/helm_badname |
nuget |
software | healthy | integration/testdata/fixtures/repo/nuget |
helm_testchart |
software | healthy | integration/testdata/fixtures/repo/helm_testchart |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
3.5.1.30 |
network | healthy | pkg/dependency/parser/nuget/lock/parse_testcase.go |
2.9.10.6 |
network | healthy | pkg/dependency/parser/java/jar/parse_test.go |
127.0.0.1 |
network | healthy | pkg/dependency/parser/java/pom/mirror.go |
15.3.17.8 |
network | healthy | pkg/fanal/test/integration/library_test.go |
1.7.3.2 |
network | healthy | pkg/fanal/analyzer/pkg/rpm/archive_test.go |
2.6.3.0 |
network | healthy | pkg/fanal/artifact/image/image_test.go |
6.0.2.1 |
network | healthy | pkg/fanal/applier/docker_test.go |
2.13.4.1 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
5.2.6.2 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
6.0.4.6 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
6.1.4.6 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
7.0.2.2 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
7.0.2.1 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
6.1.4.5 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
6.0.4.5 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
5.2.6.1 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
6.1.4.1 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
2.12.7.1 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
2.13.4.2 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
2.12.17.1 |
network | healthy | pkg/sbom/cyclonedx/marshal_test.go |
10.0.0.0 |
network | healthy | pkg/iac/adapters/arm/network/adapt_test.go |
10.0.1.0 |
network | healthy | pkg/iac/adapters/arm/network/adapt_test.go |
10.0.2.0 |
network | healthy | pkg/iac/adapters/arm/network/adapt_test.go |
172.16.0.0 |
network | healthy | pkg/iac/adapters/arm/network/adapt_test.go |
172.16.1.0 |
network | healthy | pkg/iac/adapters/arm/network/adapt_test.go |
172.16.2.0 |
network | healthy | pkg/iac/adapters/arm/network/adapt_test.go |
1.2.3.4 |
network | healthy | pkg/iac/adapters/arm/container/adapt_test.go |
108.12.12.0 |
network | healthy | pkg/iac/adapters/terraform/google/sql/adapt_test.go |
10.10.128.0 |
network | healthy | pkg/iac/adapters/terraform/google/gke/adapt_test.go |
10.10.10.1 |
network | healthy | pkg/iac/adapters/terraform/openstack/adapt_test.go |
10.10.10.2 |
network | healthy | pkg/iac/adapters/terraform/openstack/adapt_test.go |
10.2.0.0 |
network | healthy | pkg/iac/adapters/terraform/aws/eks/adapt_test.go |
4.5.6.7 |
network | healthy | pkg/iac/adapters/terraform/aws/ec2/vpc_test.go |
192.168.1.0 |
network | healthy | pkg/iac/adapters/terraform/digitalocean/compute/adapt_test.… |
192.168.0.0 |
network | healthy | pkg/iac/adapters/terraform/azure/cosmosdb/adapt_test.go |
4.53.160.75 |
network | healthy | pkg/iac/adapters/terraform/azure/network/adapt_test.go |
40.112.8.12 |
network | healthy | pkg/iac/adapters/terraform/azure/database/adapt_test.go |
40.112.0.0 |
network | healthy | pkg/iac/adapters/terraform/azure/database/adapt_test.go |
40.112.255.255 |
network | healthy | pkg/iac/adapters/terraform/azure/database/adapt_test.go |
10.0.17.62 |
network | healthy | pkg/iac/adapters/terraform/azure/database/adapt_test.go |
192.0.2.110 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.0.2.100 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.0.2.120 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.0.2.130 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.0.2.140 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.0.2.150 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
10.0.0.99 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.168.1.11 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.168.1.12 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
192.168.1.21 |
network | healthy | pkg/iac/scanners/ansible/inventory/inventory_test.go |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
_settings_build |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
config_options |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
configure |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
requirements |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
build_requirements |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
validate |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
layout |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_is_clangcl |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_is_mingw |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_use_nmake |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
source |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_target |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_perlasm_scheme |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_asm_target |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_targets |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_ancestor_target |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_get_default_openssl_dir |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_configure_args |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
generate |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_create_targets |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_run_make |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_perl |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_make |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_make_install |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
build |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_make_program |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_replace_runtime_in_file |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
package |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_create_cmake_module_variables |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_module_subfolder |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_module_file_rel_path |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
package_info |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_is_mingw |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
export_sources |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
config_options |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
configure |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
layout |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
source |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
generate |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_patch_sources |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
build |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
_extract_license |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
package |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
package_info |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
o |
software | healthy | pkg/fanal/secret/testdata/obfuscated.js:o |
u |
software | healthy | pkg/fanal/secret/testdata/obfuscated.js:u |
s |
software | healthy | pkg/fanal/secret/testdata/obfuscated.js:s |
p |
software | healthy | pkg/fanal/secret/testdata/obfuscated.js:p |
| Label | Layer | Status | Path |
|---|---|---|---|
password_literal::integration/registry_test.go |
security | healthy | integration/registry_test.go |
aws_access_key::integration/testdata/fixtures/repo/secrets/… |
security | healthy | integration/testdata/fixtures/repo/secrets/deploy.sh |
github_token::integration/testdata/fixtures/repo/secrets/de… |
security | healthy | integration/testdata/fixtures/repo/secrets/deploy.sh |
password_literal::pkg/dependency/parser/java/pom/mirror_tes… |
security | healthy | pkg/dependency/parser/java/pom/mirror_test.go |
password_literal::pkg/dependency/parser/java/pom/settings_t… |
security | healthy | pkg/dependency/parser/java/pom/settings_test.go |
password_literal::pkg/dependency/parser/java/pom/settings_t… |
security | healthy | pkg/dependency/parser/java/pom/settings_test.go |
password_literal::pkg/dependency/parser/java/pom/settings_t… |
security | healthy | pkg/dependency/parser/java/pom/settings_test.go |
password_literal::pkg/dependency/parser/java/pom/settings_t… |
security | healthy | pkg/dependency/parser/java/pom/settings_test.go |
password_literal::pkg/dependency/parser/java/pom/settings_t… |
security | healthy | pkg/dependency/parser/java/pom/settings_test.go |
password_literal::pkg/dependency/parser/java/pom/settings_t… |
security | healthy | pkg/dependency/parser/java/pom/settings_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/remote/remote_test.go |
security | healthy | pkg/remote/remote_test.go |
password_literal::pkg/fanal/test/integration/registry_test.… |
security | healthy | pkg/fanal/test/integration/registry_test.go |
password_literal::pkg/fanal/image/image_test.go |
security | healthy | pkg/fanal/image/image_test.go |
password_literal::pkg/fanal/image/image_test.go |
security | healthy | pkg/fanal/image/image_test.go |
password_literal::pkg/fanal/image/image_test.go |
security | healthy | pkg/fanal/image/image_test.go |
password_literal::pkg/fanal/image/registry/ecr/ecr_test.go |
security | healthy | pkg/fanal/image/registry/ecr/ecr_test.go |
password_literal::pkg/fanal/image/registry/ecr/ecr_test.go |
security | healthy | pkg/fanal/image/registry/ecr/ecr_test.go |
github_token::pkg/fanal/analyzer/imgconf/secret/secret_test… |
security | healthy | pkg/fanal/analyzer/imgconf/secret/secret_test.go |
aws_access_key::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
aws_access_key::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
aws_access_key::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
aws_access_key::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
aws_access_key::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
aws_access_key::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
github_token::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
github_token::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
github_token::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
password_literal::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
password_literal::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
password_literal::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
password_literal::pkg/fanal/artifact/repo/git_test.go |
security | healthy | pkg/fanal/artifact/repo/git_test.go |
password_literal::pkg/iac/adapters/terraform/cloudstack/com… |
security | healthy | pkg/iac/adapters/terraform/cloudstack/compute/adapt_test.go |
aws_access_key::pkg/iac/adapters/terraform/aws/ec2/autoscal… |
security | healthy | pkg/iac/adapters/terraform/aws/ec2/autoscaling_test.go |
aws_access_key::pkg/iac/adapters/terraform/aws/ec2/autoscal… |
security | healthy | pkg/iac/adapters/terraform/aws/ec2/autoscaling_test.go |
aws_access_key::pkg/iac/adapters/terraform/aws/ec2/autoscal… |
security | healthy | pkg/iac/adapters/terraform/aws/ec2/autoscaling_test.go |
aws_access_key::pkg/iac/adapters/terraform/aws/ec2/adapt_te… |
security | healthy | pkg/iac/adapters/terraform/aws/ec2/adapt_test.go |
aws_access_key::pkg/iac/adapters/terraform/aws/ec2/adapt_te… |
security | healthy | pkg/iac/adapters/terraform/aws/ec2/adapt_test.go |
aws_access_key::pkg/iac/adapters/terraform/aws/ec2/adapt_te… |
security | healthy | pkg/iac/adapters/terraform/aws/ec2/adapt_test.go |
password_literal::pkg/iac/adapters/terraform/azure/compute/… |
security | healthy | pkg/iac/adapters/terraform/azure/compute/adapt_test.go |
password_literal::pkg/iac/adapters/terraform/azure/compute/… |
security | healthy | pkg/iac/adapters/terraform/azure/compute/adapt_test.go |
| Label | Layer | Status | Path |
|---|---|---|---|
image::Dockerfile |
hardware | healthy | Dockerfile |
image::integration/testdata/fixtures/repo/custom-policy/Doc… |
hardware | healthy | integration/testdata/fixtures/repo/custom-policy/Dockerfile |
image::integration/testdata/fixtures/repo/dockerfile/Docker… |
hardware | healthy | integration/testdata/fixtures/repo/dockerfile/Dockerfile |
image::pkg/dependency/parser/java/jar/testdata/testimage/gr… |
hardware | healthy | pkg/dependency/parser/java/jar/testdata/testimage/gradle/Do… |
image::pkg/dependency/parser/java/jar/testdata/testimage/ma… |
hardware | healthy | pkg/dependency/parser/java/jar/testdata/testimage/maven/Doc… |
image::pkg/fanal/analyzer/config/testdata/src/Dockerfile |
hardware | healthy | pkg/fanal/analyzer/config/testdata/src/Dockerfile |
image::pkg/fanal/artifact/local/testdata/misconfig/dockerfi… |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/dockerfile/mult… |
image::pkg/fanal/artifact/local/testdata/misconfig/dockerfi… |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/dockerfile/sing… |
image::pkg/fanal/artifact/local/testdata/misconfig/dockerfi… |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/dockerfile/pass… |
k8s::Role::integration/testdata/fixtures/k8s/limited-role.y… |
hardware | healthy | integration/testdata/fixtures/k8s/limited-role.yaml |
k8s::RoleBinding::integration/testdata/fixtures/k8s/limited… |
hardware | healthy | integration/testdata/fixtures/k8s/limited-binding.yaml |
k8s::HorizontalPodAutoscaler::integration/testdata/fixtures… |
hardware | healthy | integration/testdata/fixtures/repo/helm_testchart/templates… |
k8s::ServiceAccount::integration/testdata/fixtures/repo/hel… |
hardware | healthy | integration/testdata/fixtures/repo/helm_testchart/templates… |
k8s::Secret::helm/trivy/templates/secret.yaml |
hardware | healthy | helm/trivy/templates/secret.yaml |
k8s::RoleBinding::helm/trivy/templates/rolebinding.yaml |
hardware | healthy | helm/trivy/templates/rolebinding.yaml |
k8s::ConfigMap::helm/trivy/templates/configmap.yaml |
hardware | healthy | helm/trivy/templates/configmap.yaml |
k8s::PodSecurityPolicy::helm/trivy/templates/podsecuritypol… |
hardware | healthy | helm/trivy/templates/podsecuritypolicy.yaml |
k8s::Role::helm/trivy/templates/role.yaml |
hardware | healthy | helm/trivy/templates/role.yaml |
k8s::ServiceAccount::helm/trivy/templates/serviceaccount.ya… |
hardware | healthy | helm/trivy/templates/serviceaccount.yaml |
k8s::Secret::pkg/iac/scanners/helm/parser/testdata/chart-wi… |
hardware | healthy | pkg/iac/scanners/helm/parser/testdata/chart-with-packaged-d… |
k8s::Secret::pkg/iac/scanners/helm/parser/testdata/chart-wi… |
hardware | healthy | pkg/iac/scanners/helm/parser/testdata/chart-with-packaged-d… |
tf::aws_s3_bucket::asd |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/mixed/src/main.… |
tf::aws_s3_bucket::one |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/multi… |
tf::aws_s3_bucket::two |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/multi… |
tf::aws_s3_bucket::three |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/multi… |
tf::aws_s3_bucket::asd |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/singl… |
tf::aws_s3_bucket::this |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/tfvar… |
tf::aws_s3_bucket::asd |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/passe… |
tf::aws_s3_bucket::three |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/buste… |
tf::aws_s3_bucket::one |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/buste… |
tf::aws_s3_bucket::two |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/buste… |
tf::aws_s3_bucket::three |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/relat… |
tf::aws_s3_bucket::one |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/relat… |
tf::aws_s3_bucket::two |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraform/relat… |
tf::aws_s3_bucket::one |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraformplan/s… |
tf::aws_s3_bucket::two |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraformplan/s… |
tf::aws_s3_bucket::three |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraformplan/s… |
tf::aws_s3_bucket::this |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraformplan/s… |
tf::aws_s3_bucket::this |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/terraformplan/s… |
tf::aws_s3_bucket::bad |
hardware | healthy | pkg/iac/scanners/terraform/testdata/fail/main.tf |
tf::aws_s3_bucket::this |
hardware | healthy | pkg/iac/scanners/terraformplan/snapshot/testdata/with-var/m… |
tf::aws_s3_bucket::this |
hardware | healthy | pkg/iac/scanners/terraformplan/snapshot/testdata/just-resou… |
tf::aws_s3_bucket::this |
hardware | healthy | pkg/iac/scanners/terraformplan/snapshot/testdata/nested-mod… |
tf::aws_s3_bucket_versioning::this |
hardware | healthy | pkg/iac/scanners/terraformplan/snapshot/testdata/nested-mod… |
| Label | Layer | Status | Path |
|---|---|---|---|
build-documents |
cicd | healthy | .github/workflows/test-docs.yaml |
auto-ready-for-review |
cicd | healthy | .github/workflows/auto-ready-for-review.yaml |
deploy |
cicd | healthy | .github/workflows/auto-update-labels.yaml |
close_issue |
cicd | healthy | .github/workflows/auto-close-issue.yaml |
deploy |
cicd | healthy | .github/workflows/mkdocs-latest.yaml |
trigger-trivy-www-deploy |
cicd | healthy | .github/workflows/mkdocs-latest.yaml |
test |
cicd | healthy | .github/workflows/test.yaml |
integration |
cicd | healthy | .github/workflows/test.yaml |
k8s-integration |
cicd | healthy | .github/workflows/test.yaml |
module-test |
cicd | healthy | .github/workflows/test.yaml |
vm-test |
cicd | healthy | .github/workflows/test.yaml |
e2e-test |
cicd | healthy | .github/workflows/test.yaml |
build-test |
cicd | healthy | .github/workflows/test.yaml |
zizmor |
cicd | healthy | .github/workflows/test.yaml |
label |
cicd | healthy | .github/workflows/triage.yaml |
build |
cicd | healthy | .github/workflows/scan.yaml |
release |
cicd | healthy | .github/workflows/release.yaml |
deploy-packages |
cicd | healthy | .github/workflows/release.yaml |
update-chart-version |
cicd | healthy | .github/workflows/release.yaml |
trigger-version-update |
cicd | healthy | .github/workflows/release.yaml |
test-images |
cicd | healthy | .github/workflows/cache-test-assets.yaml |
test-vm-images |
cicd | healthy | .github/workflows/cache-test-assets.yaml |
lint-cache |
cicd | healthy | .github/workflows/cache-test-assets.yaml |
check_permission |
cicd | healthy | .github/workflows/backport.yaml |
backport |
cicd | healthy | .github/workflows/backport.yaml |
test-chart |
cicd | healthy | .github/workflows/publish-chart.yaml |
publish-chart |
cicd | healthy | .github/workflows/publish-chart.yaml |
release |
cicd | healthy | .github/workflows/reusable-release.yaml |
stale |
cicd | healthy | .github/workflows/stale-issues.yaml |
release-please |
cicd | healthy | .github/workflows/release-please.yaml |
manual-release-please |
cicd | healthy | .github/workflows/release-please.yaml |
release-tag |
cicd | healthy | .github/workflows/release-please.yaml |
build-binaries |
cicd | healthy | .github/workflows/canary.yaml |
upload-binaries |
cicd | healthy | .github/workflows/canary.yaml |
test |
cicd | healthy | .github/workflows/bypass-test.yaml |
integration |
cicd | healthy | .github/workflows/bypass-test.yaml |
check-pr-author |
cicd | healthy | .github/workflows/release-pr-check.yaml |
cla |
cicd | healthy | .github/workflows/bypass-cla.yaml |
build |
cicd | healthy | .github/workflows/spdx-cron.yaml |
deploy |
cicd | healthy | .github/workflows/mkdocs-dev.yaml |
validate |
cicd | healthy | .github/workflows/semantic-pr.yaml |
| Label | Layer | Status | Path |
|---|---|---|---|
gha::test-docs |
cicd | healthy | .github/workflows/test-docs.yaml |
gha::auto-ready-for-review |
cicd | healthy | .github/workflows/auto-ready-for-review.yaml |
gha::auto-update-labels |
cicd | healthy | .github/workflows/auto-update-labels.yaml |
gha::auto-close-issue |
cicd | healthy | .github/workflows/auto-close-issue.yaml |
gha::mkdocs-latest |
cicd | healthy | .github/workflows/mkdocs-latest.yaml |
gha::test |
cicd | healthy | .github/workflows/test.yaml |
gha::triage |
cicd | healthy | .github/workflows/triage.yaml |
gha::scan |
cicd | healthy | .github/workflows/scan.yaml |
gha::release |
cicd | healthy | .github/workflows/release.yaml |
gha::cache-test-assets |
cicd | healthy | .github/workflows/cache-test-assets.yaml |
gha::backport |
cicd | healthy | .github/workflows/backport.yaml |
gha::publish-chart |
cicd | healthy | .github/workflows/publish-chart.yaml |
gha::reusable-release |
cicd | healthy | .github/workflows/reusable-release.yaml |
gha::stale-issues |
cicd | healthy | .github/workflows/stale-issues.yaml |
gha::release-please |
cicd | healthy | .github/workflows/release-please.yaml |
gha::canary |
cicd | healthy | .github/workflows/canary.yaml |
gha::bypass-test |
cicd | healthy | .github/workflows/bypass-test.yaml |
gha::release-pr-check |
cicd | healthy | .github/workflows/release-pr-check.yaml |
gha::bypass-cla |
cicd | healthy | .github/workflows/bypass-cla.yaml |
gha::spdx-cron |
cicd | healthy | .github/workflows/spdx-cron.yaml |
gha::mkdocs-dev |
cicd | healthy | .github/workflows/mkdocs-dev.yaml |
gha::semantic-pr |
cicd | healthy | .github/workflows/semantic-pr.yaml |
| Label | Layer | Status | Path |
|---|---|---|---|
GH_USER |
cicd | healthy | — |
TRIVY_MSTEAMS_WEBHOOK |
cicd | healthy | — |
GPG_KEY |
cicd | healthy | — |
GITHUB_TOKEN |
cicd | healthy | — |
GPG_PASSPHRASE |
cicd | healthy | — |
DOCKERHUB_USER |
cicd | healthy | — |
ECR_SECRET_ACCESS_KEY |
cicd | healthy | — |
KIND_VERSION |
cicd | healthy | — |
KIND_IMAGE |
cicd | healthy | — |
ACTIONS_MULTI_WRITE_GH_APP_CLIENT_ID |
cicd | healthy | — |
REPO_TRIVY_WRITE_GH_APP_PRIVATE_KEY |
cicd | healthy | — |
ECR_ACCESS_KEY_ID |
cicd | healthy | — |
DOCKERHUB_TOKEN |
cicd | healthy | — |
REPO_TRIVY_WRITE_GH_APP_CLIENT_ID |
cicd | healthy | — |
TRIVY_WORKFLOW_TRIGGER_APP_PRIVATE_KEY |
cicd | healthy | — |
| Label | Layer | Status | Path |
|---|---|---|---|
port:10 |
network | healthy | contrib/install.sh |
port:03 |
network | healthy | contrib/install.sh |
port:4954 |
network | healthy | helm/trivy/values.yaml |
port:256 |
network | healthy | pkg/k8s/scanner/scanner_test.go |
port:18 |
network | healthy | pkg/k8s/scanner/scanner_test.go |
port:124 |
network | healthy | pkg/k8s/report/report_test.go |
port:80 |
network | healthy | pkg/iac/adapters/terraform/google/compute/networks_test.go |
port:5440 |
network | healthy | pkg/iac/adapters/terraform/aws/redshift/adapt_test.go |
port:6379 |
network | healthy | pkg/iac/adapters/terraform/aws/elasticache/adapt_test.go |
port:9090 |
network | healthy | pkg/iac/scanners/terraform/ignore_test.go |
| Label | Layer | Status | Path |
|---|---|---|---|
auth::pkg/fanal/secret/builtin-rules.go |
security | healthy | pkg/fanal/secret/builtin-rules.go |
auth::pkg/iac/scanners/helm/parser/testdata/chart-with-pack… |
security | healthy | pkg/iac/scanners/helm/parser/testdata/chart-with-packaged-d… |
auth::go.mod |
security | healthy | go.mod |
auth::pkg/dependency/parser/nodejs/pnpm/parse_testcase.go |
security | healthy | pkg/dependency/parser/nodejs/pnpm/parse_testcase.go |
auth::pkg/iac/scanners/helm/parser/testdata/chart-with-pack… |
security | healthy | pkg/iac/scanners/helm/parser/testdata/chart-with-packaged-d… |
auth::pkg/dependency/parser/nodejs/pnpm/testdata/pnpm-lock_… |
security | healthy | pkg/dependency/parser/nodejs/pnpm/testdata/pnpm-lock_many.y… |
auth::pkg/fanal/image/image_test.go |
security | healthy | pkg/fanal/image/image_test.go |
auth::pkg/fanal/secret/scanner_test.go |
security | healthy | pkg/fanal/secret/scanner_test.go |
auth::pkg/dependency/parser/nodejs/yarn/parse_test.go |
security | healthy | pkg/dependency/parser/nodejs/yarn/parse_test.go |
auth::pkg/dependency/parser/golang/sum/parse_testcase.go |
security | healthy | pkg/dependency/parser/golang/sum/parse_testcase.go |
| Label | Layer | Status | Path |
|---|---|---|---|
k8s::Deployment::integration/testdata/fixtures/k8s/test_ngi… |
hardware | healthy | integration/testdata/fixtures/k8s/test_nginx.yaml |
k8s::Pod::integration/testdata/fixtures/k8s/limited-pod.yaml |
hardware | healthy | integration/testdata/fixtures/k8s/limited-pod.yaml |
k8s::Deployment::integration/testdata/fixtures/repo/helm_te… |
hardware | healthy | integration/testdata/fixtures/repo/helm_testchart/templates… |
k8s::Pod::integration/testdata/fixtures/repo/helm_testchart… |
hardware | healthy | integration/testdata/fixtures/repo/helm_testchart/templates… |
k8s::StatefulSet::helm/trivy/templates/statefulset.yaml |
hardware | healthy | helm/trivy/templates/statefulset.yaml |
k8s::Pod::pkg/fanal/artifact/local/testdata/misconfig/kuber… |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/kubernetes/mult… |
k8s::Pod::pkg/fanal/artifact/local/testdata/misconfig/kuber… |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/kubernetes/sing… |
k8s::Pod::pkg/fanal/artifact/local/testdata/misconfig/kuber… |
hardware | healthy | pkg/fanal/artifact/local/testdata/misconfig/kubernetes/pass… |
k8s::Deployment::pkg/iac/scanners/helm/parser/testdata/char… |
hardware | healthy | pkg/iac/scanners/helm/parser/testdata/chart-with-packaged-d… |
| Label | Layer | Status | Path |
|---|---|---|---|
vps::aws |
hardware | healthy | mkdocs.yml |
vps::azure |
hardware | healthy | mkdocs.yml |
vps::ec2 |
hardware | healthy | go.mod |
vps::gcp |
hardware | healthy | go.mod |
vps::digitalocean |
hardware | healthy | pkg/iac/rego/schemas/cloud.json |
vps::droplet |
hardware | healthy | pkg/iac/rego/schemas/cloud.json |
| Label | Layer | Status | Path |
|---|---|---|---|
redis |
data | healthy | go.mod |
sqlite |
data | healthy | go.mod |
postgresql |
data | healthy | pkg/fanal/analyzer/sbom/testdata/postgresql.spdx.json |
elasticsearch |
data | healthy | pkg/fanal/analyzer/sbom/testdata/cdx.json |
| Label | Layer | Status | Path |
|---|---|---|---|
envoy |
network | healthy | go.mod |
nginx |
network | healthy | helm/trivy/values.yaml |
loadbalancer |
network | healthy | pkg/iac/adapters/terraform/aws/elb/adapt.go |
| Label | Layer | Status | Path |
|---|---|---|---|
OpenSSLConan |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
ZlibConan |
software | healthy | pkg/fanal/analyzer/language/c/conan/testdata/cacheDir_v2/p/… |
| Label | Layer | Status | Path |
|---|---|---|---|
grpc::Cache |
api | healthy | rpc/cache/service.proto |
grpc::Scanner |
api | healthy | rpc/scanner/service.proto |
| Label | Layer | Status | Path |
|---|---|---|---|
repobility-clone-hn4lad56 |
software | healthy | /tmp/repobility-clone-hn4lad56 |
| Label | Layer | Status | Path |
|---|---|---|---|
sqs |
data | healthy | pkg/fanal/artifact/local/testdata/misconfig/cloudformation/… |
| Label | Layer | Status | Path |
|---|---|---|---|
ingress::helm/trivy/templates/ingress.yaml |
network | healthy | helm/trivy/templates/ingress.yaml |
| Label | Layer | Status | Path |
|---|---|---|---|
tf::aws_instance::this |
hardware | healthy | pkg/iac/scanners/terraformplan/snapshot/testdata/with-local… |
This page is publicly accessible at:
https://repobility.com/scan/6d822e81-bd19-495a-8800-a4180542b150/
To check status programmatically (no auth required):
curl -s https://repobility.com/api/v1/public/scan/6d822e81-bd19-495a-8800-a4180542b150/Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.