BREAKING(aws): Deprecating trivy aws
subcommand
#6884
Labels
kind/breaking
Categorizes issue or PR as related to breaking compatibility.
scan/misconfiguration
Issues relating to misconfiguration scanning
Milestone
Related PR: #6819
Summary
Trivy (v0.53+ onwards) will no longer include live cloud scanning as part of the core Trivy experience. Users are advised to install the Trivy AWS plugin, if this functionality is still desired. A migration guide can be found here
Scanning AWS Cloud resources for misconfigurations in IaC code scanning (Terraform, CloudFormation, etc.) remains unchanged.
Motivation
Currently the Trivy AWS cloud scanning functionality within the Trivy project is offered in an "experimental" state and we feel we have had many learnings to improve on this experience.
Since the plugin system of Trivy has been enhanced recently and
trivy aws
itself has found its place within its own repo, we can refactor the functionality of cloud scanning into a plugin.Benefits
This change has several benefits:
trivy azure
,trivy gcp
, etc.)The text was updated successfully, but these errors were encountered: