Yes, we use AquaSec and it’s absolutely the same engine. Trivy is so good we were tempted to drop AquaSec entirely as we only use it in our CI and this covers our requirements.
Trivy is good. It comes bundled with the harbor docker registry, meaning you get security analysis of your images and provide for some level of security as you can prevent pulling critical images (or whatever level you deem necessary).
It seems that this does the same thing as Anchore. Is there a difference that I'm not seeing?
Also, I couldn't find anything for Trivy that gives you a nice web UI like what Snyk does, or did I miss something there as well?
7 comments
[ 4.3 ms ] story [ 29.2 ms ] threadThat's not the first thing that comes to mind..
but anyway what's the catch, does it rely on a more complete IaC-style deployment than you often find?