Benki β†’ All Posts

β‡  previous page next page β‡’

A vulnerability scanner based on Syft.

Supports various GNU/Linux package formats and distributions (Alpine, Debian, RHEL/UBI, etc.) as well as libraries for various programming language ecosystems (Java, Go, Rust, JavaScript, .NET, etc.).

Example output:

$ grype registry.access.redhat.com/ubi9/ubi-micro:latest

NAME          INSTALLED           FIXED-IN     TYPE  VULNERABILITY   SEVERITY 
bash          5.1.8-4.el9                      rpm   CVE-2022-3715   Medium    
libgcc        11.2.1-9.4.el9                   rpm   CVE-2021-46195  Low       
libgcc        11.2.1-9.4.el9      (won't fix)  rpm   CVE-2022-27943  Low       
ncurses-base  6.2-8.20210508.el9  (won't fix)  rpm   CVE-2022-29458  Low       
ncurses-libs  6.2-8.20210508.el9  (won't fix)  rpm   CVE-2022-29458  Low       

Creates software bills of materials (SBOMs) for container images and directories.

Generates and converts between CycloneDX, SPDX, and a custom format.

Detects various GNU/Linux package formats and distributions (Alpine, Debian, RHEL/UBI, etc.) as well as libraries for various programming language ecosystems (Java, Go, Rust, JavaScript, .NET, etc.).

Example output:

$ syft registry.access.redhat.com/ubi9/ubi-micro:latest

NAME                    VERSION             TYPE 
basesystem              11-13.el9           rpm   
bash                    5.1.8-4.el9         rpm   
coreutils-single        8.32-31.el9         rpm   
filesystem              3.16-2.el9          rpm   
glibc                   2.34-28.el9_0.2     rpm   
glibc-common            2.34-28.el9_0.2     rpm   
glibc-minimal-langpack  2.34-28.el9_0.2     rpm   
libacl                  2.3.1-3.el9         rpm   
libattr                 2.5.1-3.el9         rpm   
libcap                  2.48-8.el9          rpm   
libgcc                  11.2.1-9.4.el9      rpm   
libselinux              3.3-2.el9           rpm   
libsepol                3.3-2.el9           rpm   
ncurses-base            6.2-8.20210508.el9  rpm   
ncurses-libs            6.2-8.20210508.el9  rpm   
pcre2                   10.37-5.el9_0       rpm   
pcre2-syntax            10.37-5.el9_0       rpm   
redhat-release          9.0-2.17.el9        rpm   
setup                   2.13.7-6.el9        rpm   
tzdata                  2022e-1.el9_0       rpm   

Jakarta specification for gRPC in Java. Integrates with other Jakarta specifications such as CDI.

Distributed relational database with a query engine that reuses code from PostgreSQL. Another way to think about it is that it is like Google Cloud Spanner, but Apache-licensed.

The old β€œChimerica” system that divided production between cheap manufacturing in China and expensive research in the West, benefitting both sides economically by way of comparative advantage, is ending.

Its replacement may turn out to be a new two-bloc system with a China-led bloc on one side and a Developed Democracies Plus Friendly Developing Countries bloc on the other.

β‡  previous page next page β‡’