mirror of
https://github.com/aquasecurity/trivy.git
synced 2025-12-23 15:37:50 -08:00
a4e981b4ec
* docs: add coverage * add more pages * add dart, dotnet, elixir languages. * add C, ruby, cocoapods. Update links * rename headers for dart and elixir * docs: add Google Distroless and Photon OS * docs: add IaC * docs: put vulnerability into a single page * fixed broken links * docs: add coverage overview * update some links * add note about arch for Rocky linux * docs: fix typo * fix typo * docs: add footnotes * docs: add a link to coverage in the license section * docs: add a conversion table * docs: get aligned --------- Co-authored-by: DmitriyLewen <dmitriy.lewen@smartforce.io>
920 B
920 B
Azure ARM Template
Trivy supports the scanners listed in the table below.
| Scanner | Supported |
|---|---|
| Misconfiguration | ✓ |
| Secret | ✓ |
It supports the following configurations:
| Format | Supported |
|---|---|
| ARM template | ✓ |
| Bicep | ✓1 |
To scan Bicep codes, you need to convert them into ARM templates first.
az bicep build -f main.bicep
or
bicep build main.bicep
Misconfiguration
Trivy recursively searches directories and scans all found Azure ARM templates.
Secret
The secret scan is performed on plain text files, with no special treatment for Azure ARM templates.
-
Bicep is not natively supported. It needs to be converted into Azure ARM templates. ↩︎