Correlating Scans

Take the JSON output from Trivy and Semgrep, and push it into a database (or a JSON file) that Grafana can read. This gives you a single pane of glass to see every vulnerability in every project.