From a15653e99d759c11f22790f7dfd769a1b4e5f486 Mon Sep 17 00:00:00 2001
From: Stefan Rotsch <srotsch@users.noreply.github.com>
Date: Wed, 1 Feb 2023 10:18:01 +0100
Subject: [PATCH] docs: add trivy to tools (#152)

---
 radar/2022-10-12/trivy.md | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 radar/2022-10-12/trivy.md

diff --git a/radar/2022-10-12/trivy.md b/radar/2022-10-12/trivy.md
new file mode 100644
index 0000000..0784fc4
--- /dev/null
+++ b/radar/2022-10-12/trivy.md
@@ -0,0 +1,15 @@
+---
+title:      "Trivy"
+ring:       adopt
+quadrant:   tools
+tags:       [ci/cd,devops,security]
+---
+
+[Trivy](https://trivy.dev/) is an open-source vulnerability scanner for containers and other targets. It utilizes
+an extensive vulnerability database to scan for CVEs, software dependencies in use and common misconfigurations.
+
+Trivy is lightweight and has no external dependencies, making it suitable for use in CI/CD pipelines. Additionally,
+it can support developers by providing actionable remediation advice, making it easier to fix vulnerabilities.
+
+As it has proven to be a good fit for both our needs and into our development pipelines, we strongly recommend to
+give it a try in your own projects.