Containerization is a modern practice used by software development teams as the DevOps culture continues to grow in popularity. Most of these environments benefit from the rich features provided by containerization, such as scalability, portability, and process isolation.
However, it is essential to consider “how secure” a software is before shipping it to your clients. When creating container images as your releases, the heavy use of third-party and outdated libraries means you risk introducing added vulnerabilities to the images you ship. As such, there is a need for a reliable way of scanning container images. This is where Trivy comes in handy.