mirror of
https://github.com/aquasecurity/trivy.git
synced 2025-12-22 23:26:39 -08:00
44 lines
1.3 KiB
Markdown
44 lines
1.3 KiB
Markdown
# SUSE
|
|
Trivy supports the following distributions:
|
|
|
|
- openSUSE Leap
|
|
- openSUSE Tumbleweed
|
|
- SUSE Linux Enterprise (SLE)
|
|
- SUSE Linux Enterprise Micro
|
|
|
|
Please see [here](index.md#supported-os) for supported versions.
|
|
|
|
Trivy supports these scanners for OS packages.
|
|
|
|
| Scanner | Supported |
|
|
| :-----------: | :-------: |
|
|
| SBOM | ✓ |
|
|
| Vulnerability | ✓ |
|
|
| License | ✓ |
|
|
|
|
The table below outlines the features offered by Trivy.
|
|
|
|
| Feature | Supported |
|
|
|:------------------------------------:|:---------:|
|
|
| Unfixed vulnerabilities | - |
|
|
| [Dependency graph][dependency-graph] | ✓ |
|
|
| End of life awareness | ✓ |
|
|
|
|
## SBOM
|
|
Trivy detects packages that have been installed through package managers such as `dnf` and `yum`.
|
|
|
|
## Vulnerability
|
|
SUSE offers its [own security advisories][cvrf], and these are utilized when scanning openSUSE/SLE for vulnerabilities.
|
|
|
|
### Data Source
|
|
See [here](../../scanner/vulnerability.md#data-sources).
|
|
|
|
## License
|
|
Trivy identifies licenses by examining the metadata of RPM packages.
|
|
|
|
|
|
[dependency-graph]: ../../configuration/reporting.md#show-origins-of-vulnerable-dependencies
|
|
[cvrf]: https://ftp.suse.com/pub/projects/security/cvrf/
|
|
|
|
[vulnerability statuses]: ../../configuration/filtering.md#by-status
|