Trivy · Authentication Profile

Trivy Authentication

Authentication

Trivy secures its APIs with apiKey across 1 declared security scheme, as derived from its OpenAPI definitions.

ContainersKubernetesSBOMSecurityVulnerability ScanningOpen SourceDevSecOpsCloud Security
Methods: apiKey Schemes: 1 OAuth flows: API key in: header

Security Schemes

TrivyToken apiKey
· in: header (Trivy-Token)

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/trivy-server-openapi.yml
summary:
  types:
  - apiKey
  api_key_in:
  - header
schemes:
- name: TrivyToken
  type: apiKey
  in: header
  parameter: Trivy-Token
  description: Optional token-based authentication. When the server is started with --token,
    all requests must include the token in the Trivy-Token header.
  sources:
  - openapi/trivy-server-openapi.yml