Aqua Security today revealed that its open source Trivy container scanning software is now available by default in a growing number of container platforms.
Currently available under a royalty-free Apache 2 license, Trivy will be included as the default scanner in Harbor, an open source container image registry project under the Cloud Native Computing Foundation (CNCF), as well as the registry from Docker Inc. and the Mirantis Docker Enterprise platform, which was previously owned by Docker Inc.
Liz Rice, vice president of open source engineering at Aqua Security and chair of the CNCF Technical Oversight Committee, says integrating Trivy within a registry or container platform advances DevSecOps because the ability to scan containers becomes that much easier for developers to run while accessing containers.
That approach also helps developers view cybersecurity as being something less than a black art that someone else should handle, she adds.
