Safeguard
Tag

trivy

Safeguard articles tagged "trivy" — guides, analysis, and best practices for software supply chain and application security.

33 articles

Best Practices

How to Scan Docker Images for Vulnerabilities

A production-grade vulnerability scanning pipeline for Docker images using Trivy and Grype, with reachability-based prioritization and admission enforcement.

Mar 17, 20267 min read
SBOM

SBOM Generation: Syft, Tern, Trivy Compared (2026)

An engineer's side-by-side of Syft, Tern, and Trivy for SBOM generation in 2026, with honest notes on accuracy, performance, and where each tool actually fits.

Mar 4, 20267 min read
Container Security

How to scan container images for vulnerabilities with Trivy

Learn how to scan container images with Trivy: install it, run your first scan, filter by severity, and gate builds automatically in CI/CD pipelines.

Feb 19, 20267 min read
Container Security

Continuous container vulnerability scanning with Amazon I...

How Amazon Inspector's continuous container scanning actually works, where Inspector vs Trivy differs, and the ECR blind spots teams need to cover.

Jan 19, 20267 min read
Containers

Docker Vulnerability Scanners: What They Catch and Miss

Image scanners are excellent at matching OS packages and language dependencies against CVE databases — and structurally blind to config flaws, runtime behavior, and code you compiled yourself. Where the line sits.

Nov 20, 20258 min read
Tools

Trivy v0.69 Release Deep Dive

Aqua's Trivy hit v0.69 in late 2025 with VEX-by-default scanning, ArtifactID/ReportID provenance fields, and faster misconfig scanning. We test the upgrade on a 1.2GB image.

Nov 4, 20255 min read
Container Security

Trivy vs Grype: Container Scanning Head-to-Head

Compare Trivy and Grype on vulnerability database sources, scan speed, OS coverage, SBOM integration, and CI ergonomics to pick the right open source container scanner.

Oct 20, 20235 min read
Tool Comparisons

Trivy vs Grype: Open Source Vulnerability Scanners Compared

A practical comparison of Trivy and Grype for vulnerability scanning, covering detection accuracy, performance, SBOM support, and real-world usage patterns.

Sep 15, 20225 min read
SBOM

Trivy for SBOM Generation and Vulnerability Scanning

Trivy combines SBOM generation with vulnerability scanning in a single tool. Here's how to use both capabilities effectively.

Aug 12, 20226 min read
trivy (Page 3) — Safeguard Blog