{"schemaVersion":"opencli.cli.v1","slug":"trivy","name":"Trivy","shortName":"trivy","binaryName":"trivy","maker":{"slug":"aquasecurity","name":"Aqua Security","type":"org","url":"https://aquasec.com","officialPlatformMaker":true,"featuredBuilder":false},"category":"Security","description":"The official CLI from Aqua Security. Image scanning, vulns, and iac checks from the terminal. Supports structured output — good for scripts and agents.","tagline":"Image scanning, vulns, and iac checks from the terminal.","install":{"packageManager":"brew","command":"brew install trivy","packageName":null,"npmPackage":null,"brewFormula":"trivy","brewCask":null,"crateName":null,"pypiPackage":null,"goPackage":null,"dockerImage":null},"verify":{"command":"trivy --version","signal":"trivy responds locally and is ready for the first real command."},"quickStart":"trivy image node:20","exampleWorkflow":["trivy image node:20"],"agent":{"readiness":{"label":"Great for agents","score":75,"reasons":["Structured output is available for parsing.","Supports non-interactive/scripted use.","Works well in CI or repeatable automation."],"guardrails":[]},"packUrl":"https://opencli.co/cli/trivy/agent.md","packMarkdown":"# OpenCLI Agent Pack: Trivy\n\nUse this when an AI agent needs to work with `trivy`.\n\n## What this CLI is for\nThe official CLI from Aqua Security. Image scanning, vulns, and iac checks from the terminal. Supports structured output — good for scripts and agents.\n\nBest for: image scanning, vulns, and iac checks from the terminal.\n\n## Agent readiness\nGreat for agents (75/100)\n- Structured output is available for parsing.\n- Supports non-interactive/scripted use.\n- Works well in CI or repeatable automation.\n\n## Install\n```sh\nbrew install trivy\n```\n\n## Verify before real work\n```sh\ntrivy --version\n```\nExpected signal: trivy responds locally and is ready for the first real command.\n\n## Safe starting commands\n```sh\ntrivy --version\n```\n\n```sh\ntrivy image node:20\n```\n\n## Guardrails for agents\n- Run the verify command first.\n- Summarize findings before taking actions with side effects.\n\n## Suggested agent instruction\nYou may use Trivy (`trivy`) for image scanning, vulns, and iac checks from the terminal.. First install it if missing, then run the verify command. Start with read-only or inspection commands. Summarize what you found before changing anything. Ask for confirmation before commands that mutate remote state, spend money, deploy, delete data, merge code, or expose secrets.\n\nSource: OpenCLI\n"},"fit":{"bestFor":"image scanning, vulns, and iac checks from the terminal.","useThisIf":"You want security scanning you can script with structured output.","skipIf":"You don't work with security scanning.","whatHappensNext":"Run `trivy image node:20` and see what comes back."},"capabilities":{"agentFriendly":true,"supportsJsonOutput":true,"supportsNonInteractive":true,"supportsDryRun":false,"requiresAuth":false,"requiresNetwork":false,"ciFriendly":true,"localFirst":false,"destructivePotential":"low"},"taxonomy":{"useCases":["Image scanning","Vulns","IaC checks"],"aliases":["container scan"],"keywords":["security scan vulnerabilities"],"tags":["official","agent-friendly","ci-friendly","json-output"]},"links":{"website":"https://trivy.dev","github":"https://github.com/aquasecurity/trivy","docs":"https://trivy.dev/latest/docs/references/configuration/cli/","opencli":"https://opencli.co/cli/trivy","markdown":"https://opencli.co/cli/trivy/agent.md","json":"https://opencli.co/cli/trivy.json"},"metrics":{"githubStars":36147,"latestRelease":"2026-06-08T10:44:20Z","license":"Apache-2.0","metricLabel":"Homebrew installs (30d)","metricValue":9844,"metricSource":"homebrew","metricAsOf":"2026-06-08T11:00:51.752Z"}}