Description
The documentation for SARIF output format could include a complete example showing the expected output structure and how to use it with popular tools.
Suggestion
Add a section in the docs showing:
- How to generate SARIF output: trivy image --format sarif
- Sample SARIF JSON output snippet
- How to import results into GitHub Code Scanning
- How to use SARIF results with other security dashboards
Related to #3226 which tracks adding startTime/endTime to SARIF output.
Why this matters
SARIF is becoming the standard format for security tool output. Having clear examples would help users integrate Trivy into their security workflows more easily.
Description
The documentation for SARIF output format could include a complete example showing the expected output structure and how to use it with popular tools.
Suggestion
Add a section in the docs showing:
Related to #3226 which tracks adding startTime/endTime to SARIF output.
Why this matters
SARIF is becoming the standard format for security tool output. Having clear examples would help users integrate Trivy into their security workflows more easily.