Benki Post #1462

A vulnerability scanner based on Syft.

Supports various GNU/Linux package formats and distributions (Alpine, Debian, RHEL/UBI, etc.) as well as libraries for various programming language ecosystems (Java, Go, Rust, JavaScript, .NET, etc.).

Example output:

$ grype registry.access.redhat.com/ubi9/ubi-micro:latest

NAME          INSTALLED           FIXED-IN     TYPE  VULNERABILITY   SEVERITY 
bash          5.1.8-4.el9                      rpm   CVE-2022-3715   Medium    
libgcc        11.2.1-9.4.el9                   rpm   CVE-2021-46195  Low       
libgcc        11.2.1-9.4.el9      (won't fix)  rpm   CVE-2022-27943  Low       
ncurses-base  6.2-8.20210508.el9  (won't fix)  rpm   CVE-2022-29458  Low       
ncurses-libs  6.2-8.20210508.el9  (won't fix)  rpm   CVE-2022-29458  Low

Benki → Post #1462

🔖 Grype.