How to set a vulnerability exclusion

The container scanner supports some pre-existing methods for declaring exclusions:

• from the report page

• from the dashboard

From a .meterian file

The format of the .meterian file is defined here.

In order to use a .meterian file with the container scanner it must be present in the directory where you launch the scanner.

From a .trivyignore file

You can also use a .trivyignore file to exclude CVEs from your analysis. The currently supported .trivyignore format is defined here.

In order to use a .trivyignore file to declare exclusions it must also be present in the directory where you launch the scanner.

Please keep in mind, the .trivyignore file is only supported by the container scanner.