# Docker Image Security Analysis with Trivy

### Trivy

* Simple and comprehensive scanner for vulnerabilities
  * container images
  * file systems
  * git repositories
  * configuration issues
* Used to scan Infrastructure as Code (IaC) files such as \<below\_listed> to detect potential configuration issues that expose your deployment to risk of attacks
  * Terraform
  * Dockerfile
  * Kubernetes

***