2025-08-13T16:07:41Z INFO [vulndb] Need to update DB 2025-08-13T16:07:41Z INFO [vulndb] Downloading vulnerability DB... 2025-08-13T16:07:41Z INFO [vulndb] Downloading artifact... repo="public.ecr.aws/aquasecurity/trivy-db:2" 2025-08-13T16:07:44Z INFO [vulndb] Artifact successfully downloaded repo="public.ecr.aws/aquasecurity/trivy-db:2" 2025-08-13T16:07:44Z INFO [vuln] Vulnerability scanning is enabled 2025-08-13T16:07:44Z INFO [secret] Secret scanning is enabled 2025-08-13T16:07:44Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning 2025-08-13T16:07:44Z INFO [secret] Please see also https://trivy.dev/v0.65/docs/scanner/secret#recommendation for faster secret detection 2025-08-13T16:07:53Z INFO [npm] To collect the license information of packages, "npm install" needs to be performed beforehand dir="vendor/github.com/arl/statsviz/internal/static/node_modules" 2025-08-13T16:07:53Z WARN [pip] Unable to find python `site-packages` directory. License detection is skipped. err="site-packages directory not found" 2025-08-13T16:07:55Z INFO Suppressing dependencies for development and testing. To display them, try the '--include-dev-deps' flag. 2025-08-13T16:07:55Z INFO Number of language-specific files num=18 2025-08-13T16:07:55Z INFO [bundler] Detecting vulnerabilities... 2025-08-13T16:07:55Z INFO [gomod] Detecting vulnerabilities... 2025-08-13T16:07:55Z INFO [npm] Detecting vulnerabilities... 2025-08-13T16:07:55Z INFO [pip] Detecting vulnerabilities... 2025-08-13T16:07:55Z WARN Using severities from other vendors for some vulnerabilities. Read https://trivy.dev/v0.65/docs/scanner/vulnerability#severity-selection for details.  Report Summary ┌─────────────────────────────────────────────────────────────────────┬─────────┬─────────────────┬─────────┐ │  Target  │  Type  │ Vulnerabilities │ Secrets │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ bin/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ go.mod │ gomod │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/builder-3.3.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.84.1/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.85.1/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.87.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.88.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.89.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.91.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/nonnative-1.92.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.3.0/gems/unicode-emoji-4.0.4/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.4.0/gems/builder-3.3.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.4.0/gems/lint_roller-1.1.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.4.0/gems/nonnative-1.106.0/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ test/vendor/bundle/ruby/3.4.0/gems/unicode-emoji-4.0.4/Gemfile.lock │ bundler │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ vendor/github.com/arl/statsviz/internal/static/package-lock.json │ npm │ 0 │ - │ ├─────────────────────────────────────────────────────────────────────┼─────────┼─────────────────┼─────────┤ │ vendor/go.opentelemetry.io/otel/requirements.txt │ pip │ 0 │ - │ └─────────────────────────────────────────────────────────────────────┴─────────┴─────────────────┴─────────┘ Legend: - '-': Not scanned - '0': Clean (no security findings detected)