InboundSecurity

Trivy + Alert24

Turn Trivy alerts into actionable incidents in Alert24, with on-call routing, escalations, and status updates.

Start Free Trial See Pricing

Receive Aqua Trivy container and IaC vulnerability scan results via webhook.

Auto-detected payloads

Alert24 recognizes Trivy webhooks out of the box and maps fields to incidents automatically.

On-call routing & escalations

Page the right engineer over SMS, voice, push, email, or chat with policy-driven escalations.

Auto-updating status pages

Promote incidents to a public or private status page with one click and keep customers informed.

Change correlation & AI RCA

Recent deploys, infra updates, and feature flag flips surface alongside the incident for faster root cause.

Quick Setup

Copy Webhook URL

Go to your Alert24 dashboard and copy the webhook URL for Trivy.

Configure Trivy

Add the webhook URL in your Trivy settings.

Auto-Detected

Alert24 auto-detects Trivy payloads and maps them to incidents.

Step-by-Step Setup Instructions

Trivy Webhook Setup

1.Run Trivy scan and pipe results to a webhook:

trivy image --format json my-image:latest | \
  curl -X POST -H "Content-Type: application/json" \
  -d @- <WEBHOOK_URL>

2.Or integrate into your CI pipeline to send scan results automatically

3.Use trivy-webhook-relay for automated forwarding

Example Webhook Payload

This is a sample payload that Trivy sends to Alert24 when an alert fires.

{
  "ArtifactName": "my-app:latest",
  "Results": [
    {
      "Target": "my-app:latest",
      "Vulnerabilities": [
        {
          "VulnerabilityID": "CVE-2024-1234",
          "PkgName": "openssl",
          "Severity": "CRITICAL",
          "Title": "Buffer overflow in OpenSSL"
        }
      ]
    }
  ]
}