trivy.output

Title: trivy.output

Type	object
Additional properties

Description: Vulnerability scan results from Trivy.

Property	Pattern	Type	Deprecated	Definition	Title/Description
+ analyzer	No	const	No	-	Unique identifier for the Trivy analyzer.
+ repository	No	string	No	-	The image repository that was analyzed.
+ tag	No	string	No	-	The image tag that was analyzed.
+ trivy_version	No	string	No	-	Version of the Trivy CLI tool used.
+ vulnerability_count	No	integer	No	-	Total number of vulnerabilities found.
+ critical_count	No	integer	No	-	Total number of Critical severity vulnerabilities.
+ high_count	No	integer	No	-	Total number of High severity vulnerabilities.
+ medium_count	No	integer	No	-	Total number of Medium severity vulnerabilities.
+ low_count	No	integer	No	-	Total number of Low severity vulnerabilities.
+ unknown_count	No	integer	No	-	Total number of Unknown severity vulnerabilities.
+ fixed_count	No	integer	No	-	Total number of vulnerabilities with available fixes.
+ secrets_count	No	integer	No	-	Total number of secrets or credentials found.
+ targets	No	array of object	No	-	-

1. Property analyzer

Type	const

Description: Unique identifier for the Trivy analyzer.

Specific value: "trivy"

2. Property repository

Type	string

Description: The image repository that was analyzed.

3. Property tag

Type	string

Description: The image tag that was analyzed.

4. Property trivy_version

Type	string

Description: Version of the Trivy CLI tool used.

5. Property vulnerability_count

Type	integer

Description: Total number of vulnerabilities found.

Restrictions
Minimum	≥ 0

6. Property critical_count

Type	integer

Description: Total number of Critical severity vulnerabilities.

Restrictions
Minimum	≥ 0

7. Property high_count

Type	integer

Description: Total number of High severity vulnerabilities.

Restrictions
Minimum	≥ 0

8. Property medium_count

Type	integer

Description: Total number of Medium severity vulnerabilities.

Restrictions
Minimum	≥ 0

9. Property low_count

Type	integer

Description: Total number of Low severity vulnerabilities.

Restrictions
Minimum	≥ 0

10. Property unknown_count

Type	integer

Description: Total number of Unknown severity vulnerabilities.

Restrictions
Minimum	≥ 0

11. Property fixed_count

Type	integer

Description: Total number of vulnerabilities with available fixes.

Restrictions
Minimum	≥ 0

12. Property secrets_count

Type	integer

Description: Total number of secrets or credentials found.

Restrictions
Minimum	≥ 0

13. Property targets

Type	array of object

	Array restrictions
Min items	N/A
Max items	N/A
Items unicity	False
Additional items	False
Tuple validation	See below

Each item of this array must be	Description
targets items	-

13.1. targets items

Type	object
Additional properties

Property	Pattern	Type	Deprecated	Definition	Title/Description
- Secrets	No	array of object or null	No	-	List of secrets discovered in this target.
+ Target	No	string	No	-	The scan target (e.g., a file path or OS distribution name).
+ Vulnerabilities	No	array of object or null	No	-	List of vulnerabilities discovered in this target.

13.1.1. Property Secrets

Type	array of object or null

Description: List of secrets discovered in this target.

	Array restrictions
Min items	N/A
Max items	N/A
Items unicity	False
Additional items	False
Tuple validation	See below

Each item of this array must be	Description
Secrets items	-

13.1.1.1. Secrets items

Type	object
Additional properties

Property	Pattern	Type	Deprecated	Definition	Title/Description
+ RuleID	No	string	No	-	-
+ Title	No	string	No	-	-
+ Severity	No	string	No	-	-
+ Match	No	string	No	-	-

13.1.1.1.1. Property RuleID

Type	string

13.1.1.1.2. Property Title

Type	string

13.1.1.1.3. Property Severity

Type	string

13.1.1.1.4. Property Match

Type	string

13.1.2. Property Target

Type	string

Description: The scan target (e.g., a file path or OS distribution name).

13.1.3. Property Vulnerabilities

Type	array of object or null

Description: List of vulnerabilities discovered in this target.

	Array restrictions
Min items	N/A
Max items	N/A
Items unicity	False
Additional items	False
Tuple validation	See below

Each item of this array must be	Description
Vulnerabilities items	-

13.1.3.1. Vulnerabilities items

Type	object
Additional properties

Property	Pattern	Type	Deprecated	Definition	Title/Description
+ VulnerabilityID	No	string	No	-	CVE ID or tool-specific vulnerability identifier.
+ PkgName	No	string	No	-	Name of the affected package.
+ InstalledVersion	No	string	No	-	Version of the package installed in the image.
- FixedVersion	No	string	No	-	Version of the package that contains a fix, if available.
+ Severity	No	string	No	-	Severity level assigned by Trivy.
- Title	No	string	No	-	Short title describing the vulnerability.
- Description	No	string	No	-	Full description of the vulnerability.

13.1.3.1.1. Property VulnerabilityID

Type	string

Description: CVE ID or tool-specific vulnerability identifier.

13.1.3.1.2. Property PkgName

Type	string

Description: Name of the affected package.

13.1.3.1.3. Property InstalledVersion

Type	string

Description: Version of the package installed in the image.

13.1.3.1.4. Property FixedVersion

Type	string

Description: Version of the package that contains a fix, if available.

13.1.3.1.5. Property Severity

Type	string

Description: Severity level assigned by Trivy.

13.1.3.1.6. Property Title

Type	string

Description: Short title describing the vulnerability.

13.1.3.1.7. Property Description

Type	string

Description: Full description of the vulnerability.

---

Generated using json-schema-for-humans on 2026-03-21 at 11:43:37 +0000