Scan k8s cluster trivy
Security audit of the whole cluster: images, configs, RBAC
trivy k8s --report summary cluster
more trivy
all 15 commands →
Scan specific namespace
trivy k8s --namespace production --report summary all
Scan Helm chart
trivy config ./my-chart
Scan with JSON output
trivy image --format json -o results.json img:tag
Scan IaC directory
trivy config --severity MEDIUM,HIGH,CRITICAL ./terraform
Ignore unfixed CVEs
trivy image --ignore-unfixed --severity HIGH,CRITICAL img:tag