docs/ecosystem/reporting.md
DefectDojo can parse Trivy JSON reports. The parser supports deduplication and auto-close features.
š Get it at: https://github.com/DefectDojo/django-DefectDojo
SecObserve can parse Trivy results as CycloneDX reports and provides an unified overview of vulnerabilities from different sources. Vulnerabilities can be evaluated with manual and rule based assessments.
š Get it at: https://github.com/SecObserve/SecObserve
A Trivy plugin that scans and outputs the results to an interactive html file.
š Get it at: https://github.com/fatihtokus/scan2html
A Trivy plugin that converts JSON report to SonarQube generic issues format.
š Get it at: https://github.com/umax/trivy-plugin-sonarqube
Trivy-Streamlit is a Streamlit application that allows you to quickly parse the results from a Trivy JSON report.
š Get it at: https://github.com/mfreeman451/trivy-streamlit
This project is a web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive data table.
š Get it at: https://github.com/dbsystel/trivy-vulnerability-explorer
This project is a web application designed to help you visualize Trivy image scan reports. It enriches the data with additional exploitability metrics from EPSS, Metasploit, and Exploit-DB, updated daily.
š Get it at: https://plopsec.com | https://github.com/pl0psec/plopsec.com