# Supported Integrations

Listed down below are the third-party tools Ozone supports for security integrations.<br>

**TRIVY:**

Trivy is a comprehensive and versatile security scanner. Trivy has *scanners* that look for security issues, and *targets* where it can find those issues.

*Targets (what Trivy can scan):*

* Container Image
* Filesystem
* Git Repository (remote)
* Virtual Machine Image
* Kubernetes
* AWS

*Scanners (what Trivy can find there):*

* OS packages and software dependencies in use (SBOM)
* Known vulnerabilities (CVEs)
* IaC issues and misconfigurations
* Sensitive information and secrets
* Software licenses

Trivy supports the most popular programming languages, operating systems, and platforms.\
\
**SonarQube:**\
\
SonarQube is a self-managed, automatic code review tool that systematically helps you deliver C*lean Code*. SonarQube integrates into your existing workflow and detects issues in your code to help you perform continuous code inspections of your projects. SonarQube analyses 30+ different languages and integrates them into your CI pipeline to ensure that your code meets high-quality standards.\ <br>

**SNYK:**

Snyk is an open-source security platform designed to help software-driven businesses enhance developer security. Snyk's dependency scanner makes it the only solution that seamlessly and proactively finds, prioritizes, and fixes vulnerabilities and license violations in open-source dependencies and container images.

* Find and fix vulnerabilities in 5 minutes
* Snyk supports your favorite languages and seamlessly integrates with your tools, pipelines, and workflows.
* More than 85% of developers recommend Snyk thanks to its ease of use and the considerable amount of time it saves them during development.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ozone.one/ozone-end-user-guide/documentation/devsecops/supported-integrations.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.