EN
ENNA

OSV-Scanner vs Trivy

OSV-Scanner

โšก Vulnerability Scanning ยท Go

Trivy

โšก Vulnerability Scanning ยท Go

GitHub Stats

8.7k
Stars
34.4k
560
Forks
238
110
Issues
247
today
Updated
13d ago
Apache-2.0
License
Apache-2.0
Go
Language
Go

About OSV-Scanner

Google's dependency vulnerability scanner using the OSV.dev database across multiple language ecosystems.

About Trivy

Trivy is a comprehensive vulnerability scanner capable of analyzing containers, filesystems, git repositories, and Kubernetes configurations. It generates Software Bill of Materials (SBOM) and identifies vulnerabilities by matching known CVEs against the scanned components. Designed for ease of use, Trivy integrates seamlessly into CI/CD pipelines, enabling continuous security assessments. Its broad coverage and support for multiple formats make it a versatile tool for maintaining security across diverse environments.

Platform Support

๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Tags

OSV-Scanner only

dependency-scanningscasupply-chaincve

Trivy only

container-securitysbomvulnerability-scanneriac-scanning
View OSV-Scanner DetailsView Trivy Details