grype

Vulnerability scanner for container images and filesystems

Security linuxmacoswindows Go Apache-2.0

Description

Grype is a vulnerability scanner for container images and filesystems that supports a wide range of package managers. It identifies known vulnerabilities in your dependencies.

AI Summary

Scan container images and filesystems for known vulnerabilities

Capabilities

+ Scan container images for vulnerabilities
+ Scan filesystems for vulnerabilities
+ Wide package manager support
+ CVE database matching

Use When

→ When you need to scan for vulnerabilities
→ When checking container security

Avoid When

x When you need SBOM generation (use syft)

Related Tools

View AGENTS.md for grype