Troubleshooting

    Your scan may time out. Java takes a particularly long time to scan. Try increasing the value of the —-timeout option such as .

    Certification

    Error

    Error: x509: certificate signed by unknown authority

    TRIVY_INSECURE can be used to allow insecure connections to a container registry when using SSL.

    1. $ TRIVY_INSECURE=true trivy image [YOUR_IMAGE]

    Error

    1. $ trivy image ...
    2. ...
    3. API rate limit exceeded for xxx.xxx.xxx.xxx.

    Running in parallel takes same time as series run

    When running trivy on multiple images simultaneously, it will take same time as running trivy in series.
    This is because of a limitation of boltdb.

    Reference : boltdb: Opening a database.

    Error

    FATAL failed to download vulnerability DB

    • api.github.com
    • github.com
    • github-releases.githubusercontent.com

    Scope error

    Error

    Error: Your macOS keychain GitHub credentials do not have sufficient scope!

    2. Scopes they need: none
    3. Scopes they have:
    4. Create a personal access token:
    5. https://github.com/settings/tokens/new?scopes=gist,public_repo&description=Homebrew

    Try:

    1. $ printf "protocol=https\nhost=github.com\n" | git credential-osxkeychain erase

    Error

    Error: aquasecurity/trivy/trivy 64 already installed

    1. $ brew unlink trivy && brew uninstall trivy
    2. ($ rm -rf /usr/local/Cellar/trivy/64)
    3. $ brew install aquasecurity/trivy/trivy

    Unknown error

    Try again with --reset option: