github.com/devseccon/trivy@v0.47.1-0.20231123133102-bd902a0bd996/docs/tutorials/additional-resources/references.md (about) 1 # Additional Resources and Tutorials 2 Below is a list of additional resources from DevSecCon Security. 3 4 ## Announcements 5 6 - [Trivy Vulnerability Scanner Joins the DevSecCon Open-source Family](https://blog.aquasec.com/trivy-vulnerability-scanner-joins-aqua-family) 7 - [Trivy Image Vulnerability Scanner Now Under Apache 2.0 License](https://blog.aquasec.com/trivy-open-source-vulnerability-scanner-apache2.0-license) 8 9 ## Vulnerability Scanning 10 11 - [Using Trivy to Discover Vulnerabilities in VS Code Projects](https://blog.aquasec.com/trivy-open-source-vulnerability-scanner-vs-code) 12 - [How does a vulnerability scanner identify packages?](https://youtu.be/PaMnzeHBa8M) 13 - [Handling Container Vulnerabilities with Open Policy Agent - Teppei Fukuda, DevSecCon Security](https://youtu.be/WKE2XNZ2zr4) 14 15 ## CI/CD Pipelines 16 17 - [DevSecOps with Trivy and GitHub Actions](https://blog.aquasec.com/devsecops-with-trivy-github-actions) 18 - [Find Image Vulnerabilities Using GitHub and DevSecCon Security Trivy Action](https://blog.aquasec.com/github-vulnerability-scanner-trivy) 19 20 ## Misconfiguration Scanning 21 22 - [Identifying Misconfigurations in your Terraform](https://youtu.be/cps1V5fOHtE) 23 24 ## Client/Server 25 26 - [Using Trivy in client server mode](https://youtu.be/tNQ-VlahtYM) 27 28 ## Workshops 29 30 - [Trivy Live Demo & Q&A](https://youtu.be/6Vw0QgJ-k5o) 31 - [First Steps to Full Lifecycle Security with Open Source Tools - Rory McCune & Anais Urlichs](https://youtu.be/nwJ0366rs6s) 32 33 34 ## Older Resources 35 36 - [Webinar: Trivy Open Source Scanner for Container Images – Just Download and Run!](https://youtu.be/XnYxX9uueoQ) 37 - [Kubernetes Security through GitOps Best Practices: ArgoCD and Starboard](https://youtu.be/YvMY8to9aHI) 38 - [Get started with Kubernetes Security and Starboard](https://youtu.be/QgctrpTpJec)