Aqua Security announces that Aqua Trivy is now the default scanner for GitLab Auto DevOps. Customers can now automatically scan the GitLab CI pipeline for OS package vulnerabilities. The change will take place as part of GitLab’s 14.0 release and is based on the results of a publicly available solution comparison and research process. The partnership with Aqua Trivvy will continue with roadmap plans to scan containers running in production using Trivy with Aqua Starboard, the open source Kubernetes Security toolkit.
Source: https://www.helpnetsecurity.com/2021/06/24/aqua-security-gitlab/