Codefresh vs Trivy

Overview

Codefresh

Stacks64

Followers111

Votes47

Trivy

Stacks55

Followers27

Votes0

GitHub Stars29.7K

Forks2.8K

🔥 Trending in Container Registry on StackShare

Docker

Container Registry

Enterprise Container Platform for High-Velocity Innovation.

Try it View Docs Alternatives

Try

473

144k

Detailed Comparison

Codefresh	Trivy
Automate and parallelize testing. Codefresh allows teams to spin up on-demand compositions to run unit and integration tests as part of the continuous integration process. Jenkins integration allows more complex pipelines.	It is a simple and comprehensive vulnerability scanner for containers and other artifacts. It detects vulnerabilities of OS packages (Alpine, RHEL, CentOS, etc.) and application dependencies (Bundler, Composer, npm, yarn, etc.). It is easy to use. Just install the binary and you're ready to scan. All you need to do for scanning is to specify a target such as an image name of the container.
Instant Dev, test and feature preview environments: Enables all team members to run any image as a standalone or composition for feature preview, manual testing, bug reproduction and more. Collaborate on features before pushing them into staging and production.; Testing with every step: Configure your pipeline to run integration and unit tests with every step; Instantly test all code changes in the Codefresh build system before pushing to staging & production. Run integration, unit tests in parallel.; 360° view of Docker images: View commit info, test results and build logs for all images; Manage Docker image labels and status, comment and see new feature branches; search and filter based on any attribute.; Out-of-the-box Docker buildpack for all technologies: Seamlessly package your code in a Docker image. Quickly associate a Dockerfile with your repo by selecting the repository technology stack (Java, Node, PHP, etc.). Codefresh then adds a template for Dockerizing apps.; View and Access Running Container Logs: Access each container log directly from within the Codefresh platform. This lets you easily perform root-cause analysis on failed services and allows you to see logs in high debug model level.; Support for Docker Compose 1 & 2: Manage your Docker Compose file natively in one place, with support for both Docker Compose versions 1 and 2. Use a built-in wizard to write Docker Compose files quickly.; YAML file support: Customize and easily define your pipeline steps using a codefresh.yml file.	Simple; Fast; Easy installation; High accuracy; Detect comprehensive vulnerabilities; Suitable for CI such as Travis CI, CircleCI, Jenkins, GitLab CI, etc; Support multiple formats
Statistics
GitHub Stars -	GitHub Stars 29.7K
GitHub Forks -	GitHub Forks 2.8K
Stacks 64	Stacks 55
Followers 111	Followers 27
Votes 47	Votes 0
Pros & Cons
Pros 11 Fastest and easiest way to work with Docker 7 Great support/fast builds/awesome ui 6 Great onboarding 5 Freestyle build steps to support custom CI/CD scripting 4 Easy setup Cons 1 Questionable product quality and stability 1 Expensive compared to alternatives	No community feedback yet
Integrations
Quay.io Docker Compose Docker Swarm BinTray Docker Cloud Amazon EC2 GitHub Bitbucket HipChat BlazeMeter	Travis CI CircleCI Jenkins AWS CodePipeline GitLab CI GitHub Actions Amazon ECR Alpine Linux Docker Hub CentOS

What are some alternatives to Codefresh, Trivy?

Kubernetes

Kubernetes is an open source orchestration system for Docker containers. It handles scheduling onto nodes in a compute cluster and actively manages workloads to ensure that their state matches the users declared intentions.

Rancher

Rancher is an open source container management platform that includes full distributions of Kubernetes, Apache Mesos and Docker Swarm, and makes it simple to operate container clusters on any cloud or infrastructure platform.

Docker Compose

With Compose, you define a multi-container application in a single file, then spin your application up in a single command which does everything that needs to be done to get it running.

Docker Swarm

Swarm serves the standard Docker API, so any tool which already communicates with a Docker daemon can use Swarm to transparently scale to multiple hosts: Dokku, Compose, Krane, Deis, DockerUI, Shipyard, Drone, Jenkins... and, of course, the Docker client itself.

Tutum

Tutum lets developers easily manage and run lightweight, portable, self-sufficient containers from any application. AWS-like control, Heroku-like ease. The same container that a developer builds and tests on a laptop can run at scale in Tutum.

Portainer

It is a universal container management tool. It works with Kubernetes, Docker, Docker Swarm and Azure ACI. It allows you to manage containers without needing to know platform-specific code.

Let's Encrypt

It is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG).

Sqreen

Sqreen is a security platform that helps engineering team protect their web applications, API and micro-services in real-time. The solution installs with a simple application library and doesn't require engineering resources to operate. Security anomalies triggered are reported with technical context to help engineers fix the code. Ops team can assess the impact of attacks and monitor suspicious user accounts involved.