Is it possible to just scan os packages

[eldemcan]

Hi,

Currently when we use trivy to scan an image it also checks dependencies from *.lock files and reports vulnerabilities. We can do something like following to skip those files

trivy --skip-files "rust-app/Cargo.lock,php-app/composer.lock,ruby-app/Gemfile.lock,python-app/Pipfile.lock,node-app/package-lock.json" --exit-code 0 --cache-dir .trivycache/ --no-progress --format template --template "@/tmp/trivy-gitlab.tpl" -o gl-container-scanning-report.json i $IMAGE

I was wondering is it possible to achieve same thing without specifying lock files to be skipped. I just want to scan against OS packages.

[eldemcan]

trivy  --vuln-type os

Will give only os types