Tamp.Trivy 1.11.2

Prefix Reserved
.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher. 
dotnet add package Tamp.Trivy --version 1.11.2
                    


                    

                
NuGet\Install-Package Tamp.Trivy -Version 1.11.2
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="Tamp.Trivy" Version="1.11.2" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="Tamp.Trivy" Version="1.11.2" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="Tamp.Trivy" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add Tamp.Trivy --version 1.11.2
                    


                    

                
#r "nuget: Tamp.Trivy, 1.11.2"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package Tamp.Trivy@1.11.2
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=Tamp.Trivy&version=1.11.2
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=Tamp.Trivy&version=1.11.2
                    


                            Install as a Cake Tool

Tamp CommandPlan wrapper for Aqua Security's `trivy` CLI. Single satellite, three scan modes — `trivy image` (container vulnerability scanning incl. OS-package layer that lockfile scanners miss), `trivy config` (IaC misconfig: Terraform / Kubernetes / Dockerfile / CloudFormation / Helm / Ansible), and `trivy fs` (source-tree secrets + misconfig + lockfile vulns). SARIF output by default. Unpinned name — Trivy's pre-1.0 CLI surface has been stable across point releases; bump to `.V1` only when 1.0 actually breaks the wrapper.

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 is compatible.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 is compatible.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages (1)

Showing the top 1 NuGet packages that depend on Tamp.Trivy:

Package Downloads
Tamp.Security.Pipeline

Tamp meta-package — one PackageReference, one base-class inheritance, get the whole Wave 1+2 security chain: CycloneDX SBOM → SAST (OpenGrep + Roslyn) → SCA (osv-scanner + Dependency-Track) → Trivy secrets+misconfig → DefectDojo reimport. Adopters override `SecurityProductName` + `SecuritySolutionPath` and run `tamp Security`. DT and DD legs are env-var-gated; producer half runs unconditionally. .NET-focused for v0 — non-.NET adopters override Sbom to use Tamp.Syft instead.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
1.11.2 153 5/25/2026
1.11.1 123 5/19/2026
1.11.0 123 5/18/2026