Trivy and ScoutSuite scans triggered by AWS Lambda packaged in a docker container deployed with SAM

An important challenge in working with containers is making them secure and having a reliable scanning tool may become crucial. It actually exists a vulnerability scanner given by default by AWS using Clair, but our security team is feeling adventurous therefore comes Trivy, an open-source vulnerability scanner modern, frequently updated, and proven effective.

Photo by Harlie Raethel on Unsplash