← Back to tools

grype

Vulnerability scanner for container images and filesystems

Homepage Repository
Security linuxmacoswindows Go Apache-2.0

Description

Grype is a vulnerability scanner for container images and filesystems that supports a wide range of package managers. It identifies known vulnerabilities in your dependencies.

When to use this tool

Good fit when
  • When you need to scan for vulnerabilities
  • When checking container security
Avoid when
  • When you need SBOM generation (use syft)

AI Summary

Scan container images and filesystems for known vulnerabilities

Capabilities

  • + Scan container images for vulnerabilities
  • + Scan filesystems for vulnerabilities
  • + Wide package manager support
  • + CVE database matching

Use When

  • When you need to scan for vulnerabilities
  • When checking container security

Avoid When

  • x When you need SBOM generation (use syft)

Related Tools

syft complementary
grant complementary
quill complementary
flawz complementary
View AGENTS.md for grype