Skip to content


Trivy supports Conan C/C++ Package Manager.

The following scanners are supported.

Package manager SBOM Vulnerability License
Conan -

The following table provides an outline of the features Trivy offers.

Package manager File Transitive dependencies Dev dependencies Dependency graph Position
Conan conan.lock1 Excluded


In order to detect dependencies, Trivy searches for conan.lock1.

  1. conan.lock is default name. To scan a custom filename use file-patterns