DevSecOps tools have carved out distinctive names in the security landscape. Learn to pronounce Trivy, Grype, and Checkov correctly — especially important when presenting security scans to stakeholders.
0 / 5 completed
1 / 5
How do you pronounce Trivy (open-source security scanner)?
Trivy is pronounced 'TRIV-ee' (/ˈtrɪvi/), two syllables with stress on the first, rhyming with 'privy'. Trivy is an open-source security scanner by Aqua Security that scans container images, filesystems, Git repositories, and Kubernetes clusters for vulnerabilities and misconfigurations. The name is a portmanteau of 'trivial' and 'vulnerability'.
2 / 5
How do you pronounce Grype (vulnerability scanner for containers)?
Grype is pronounced 'GRYP' (/ɡraɪp/), one syllable rhyming with 'type' and 'gripe'. Grype is an open-source vulnerability scanner for container images and filesystems, created by Anchore. The name plays on 'gripe' (to complain) — as in finding things to complain about in your container images. One syllable: GRYP.
3 / 5
How do you pronounce Semgrep (static analysis tool)?
Semgrep is pronounced 'SEM-grep' (/ˈsɛmˌɡrɛp/), a compound of 'sem' (semantic) and 'grep', stress on the first syllable. Semgrep is a fast, open-source static analysis tool for finding bugs and enforcing code standards across many languages. The name combines 'semantic' (meaningful pattern matching) with 'grep' (the classic Unix search tool). Two syllables: SEM-grep.
4 / 5
How do you pronounce Checkov (Terraform security scanner)?
Checkov is pronounced 'CHEK-ov' (/ˈtʃɛkɒv/), like the Russian playwright Anton Chekhov's name. Checkov is an open-source IaC static analysis tool by Bridgecrew (Palo Alto Networks) that scans Terraform, CloudFormation, and Kubernetes files for security misconfigurations. The playful name evokes both 'check' (security checking) and the famous playwright.
5 / 5
How do you pronounce Falco (cloud-native runtime security tool)?
Falco is pronounced 'FAL-koh' (/ˈfælkəʊ/), like the Italian word for falcon (a bird of prey). Falco is a CNCF cloud-native runtime security tool that detects unexpected application behaviour using Linux kernel system calls. Like a falcon watching for threats from above, Falco monitors your containers for suspicious activity. Two syllables: FAL-koh.