Disable misconfig scanner in trivy scan

[mrchandana]

I am using REPOSITORY_TRIVY Linter, and megalinter is running the following command.

❌ Linted [REPOSITORY] files with [trivy]: Found 5 error(s) and 0 warning(s) - (17.14s) (expand for details)

• Using [trivy v0.60.0] https://megalinter.io/8.5.0/descriptors/repository_trivy
• MegaLinter key: [REPOSITORY_TRIVY]
• Rules config: [/github/workspace/trivy.yaml]
• Command: [trivy fs --scanners vuln,misconfig --exit-code 1 --skip-dirs .automation/test --skip-dirs .venv --scanners vuln --config /github/workspace/trivy.yaml --format sarif -o /github/workspace/megalinter-reports/sarif/REPOSITORY_TRIVY.sarif .]

I want to run only vuln scanner without misconfig, I have already configured the scanners in the trivy.yaml file as shown

scan:
scanners:
- vuln
- license

However, megalinter is scanning for misconfig.

How can I disable misconfig??

[nvuillam]

@mrchandana the type is forced by MegaLinter descriptor

You might be able to use the following workaround in your .mega-linter.yml config file:

REPOSITORY_TRIVY_ARGUMENTS: ["--scanners","vuln"]
REPOSITORY_TRIVY_COMMAND_REMOVE_ARGUMENTS:  ["--scanners","vuln,misconfig"]

Please can you try and report if it works ?