Scanner Consolidation

secclear-cli

One clean security report from multiple Kubernetes scanners.

Stop parsing JSONs. Run Trivy, Grype, Kubescape, kube-bench, and Popeye — get one deduplicated, prioritized security report in 30 seconds. Executive summary and technical detail in one pass.

View on GitHub Install

Quick start

curl -sSL https://raw.githubusercontent.com/topcug/secclear-cli/main/install.sh | bash

secclear scan minikube

Before and after

Before secclear

10,000 lines of JSON from Trivy
Same CVE appears 3 times from 3 scanners
2–3 hours parsing manually
No cross-scanner deduplication
Still need to write an executive summary

After secclear

One command: secclear scan minikube
Auto-deduplicated — each CVE once
Top 5 prioritized issues up front
Scanner comparison: which tool found what
Ready to share in 30 seconds

Supported scanner inputs

Image Scanners (CVE detection)

Trivy — Aqua Security

Grype — Anchore

Cluster Scanners (configuration checks)

Kubescape — ARMO

kube-bench — Aqua Security

Popeye — Derailed

Install at least 2 image scanners. Cluster scanners are optional.

When to use it

Scanner consolidation

Your team runs multiple scanners but has no way to get a single view. secclear merges and deduplicates across all of them.

Review preparation

Security review is tomorrow. You need a clean, prioritized report that both engineers and managers can read. Generate it in one command.

Part of the clarity workflow

Use secclear first to understand your scanner landscape. Then use kubectl-triage to investigate specific workloads that surface as high-risk.

Need a scanner-to-decision workflow?

secclear gives you a clean report. A Baseline Review turns scanner output into a prioritized rollout plan your team can actually act on.

Book a Baseline Review

← Back to all tools