mirror of
https://github.com/aquasecurity/trivy.git
synced 2025-12-22 23:26:39 -08:00
40 lines
1.3 KiB
Markdown
40 lines
1.3 KiB
Markdown
# Usage Telemetry
|
|
|
|
Trivy collects anonymous usage data in order to help us improve the product. This document explains what is collected and how you can control it.
|
|
|
|
## Data collected
|
|
|
|
The following information could be collected:
|
|
|
|
- Environmental information:
|
|
- Installation identifier
|
|
- Trivy version
|
|
- Operating system
|
|
- Scan:
|
|
- Non-revealing scan options (see below for comprehensive list)
|
|
|
|
### Captured scan options
|
|
The following flags will be included with their value:
|
|
|
|
--8<-- "./docs/guide/advanced/telemetry-flags.md"
|
|
|
|
|
|
## Privacy
|
|
|
|
No personal information, scan results, or sensitive data is specifically collected. We take the following measures to ensure that:
|
|
|
|
- Installation identifier: one-way hash of machine fingerprint, resulting in opaque ID.
|
|
- Scan: any option that is user-controlled is omitted (never collected). For example, file paths, image names, etc are never collected.
|
|
|
|
Trivy is an Aqua Security product and adheres to the company's privacy policy: <https://aquasec.com/privacy>.
|
|
|
|
## Disabling telemetry
|
|
|
|
You can disable telemetry altogether using the `--disable-telemetry` flag. Like other Trivy flags, this can be set on the command line, YAML configuration file, or environment variable. For more details see [here](../configuration/index.md).
|
|
|
|
For example:
|
|
|
|
```bash
|
|
trivy image --disable-telemetry alpine
|
|
```
|