A vulnerability scanner for container images and filesystems - anchore/grype

Lobsters is a community-driven platform for sharing and discussing links to articles, tutorials, and projects related to technology and programming. Readers can learn about a wide range of topics, from software development and system administration to cybersecurity and artificial intelligence. With user submissions, comments, and voting, Lobsters provides a platform for collaborative learning and knowledge sharing among technology enthusiasts.

Lobsters

Grype is a vulnerability scanner for container images and filesystems that works with various image formats and supports major operating system and language-specific packages. It can be integrated with CI tools like GitHub Actions and configured to use external data sources for enhanced vulnerability matching. Grype also supports various output formats and can be customized to include or exclude specific files or paths during scanning. Installation scripts are provided for macOS and Linux, and it also supports using SBOMs for faster vulnerability scanning.

anchore/grype: A vulnerability scanner for container images and filesystems

<p>Doe it scan Dockerfiles or the built containers themselves?</p>


<p>Very useful. It supports both package managers and containers. I like it.</p>
