Replies: 1 comment
-
there are different components detected in your container image:
Trivy can scan all of the above, and for each it will emit a seperate "Totals" line with the findings for each component |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Description
I seem to get a confusing report after executing trivy getting only Critical vulnerability with an image.
As show below, in the same image, it says CRITICAL: 0 first, then after it is another report which is more reliable.
We are not sure why we are getting two results
Command: trivy image --format table --severity CRITICAL DOCKER_IMAGE
Desired Behavior
It will only show the summary that really shows that it found a critical vulnerability
Actual Behavior
See description
Reproduction Steps
Target
Container Image
Scanner
Vulnerability
Output Format
Table
Mode
None
Debug Output
Operating System
linux
Version
Checklist
trivy clean --all
Beta Was this translation helpful? Give feedback.
All reactions