The all-in-one open source security scanner.
Trivy to find Vulnerabilities & Misconfigurations.
Trivy scans Terraform, CloudFormation, Docker, Kubernetes, and many other configuration files for security issues right alongside vulnerabilities.

[Installation] 
● Ubuntu
$ sudo apt-get install wget apt-transport-https gnupg lsb-release
$ wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | sudo apt-key add -
$ echo deb https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main | sudo tee -a /etc/apt/sources.list.d/trivy.list
$ sudo apt-get update
$ sudo apt-get install trivy
