Download
A vulnerability scanner for container images and filesystems. Easily install the binary to try it out. Works with Syft, the powerful SBOM (software bill of materials) tool for container images and filesystems. Scan the contents of a container image or filesystem to find known vulnerabilities. Find vulnerabilities for major operating system packages. Find vulnerabilities for language-specific packages. You can also choose another destination directory and release version for the installation. The destination directory doesn't need to be /usr/local/bin, it just needs to be a location found in the user's PATH and writable by the user that's installing Grype. If you're using GitHub Actions, you can simply use our Grype-based action to run vulnerability scans on your code or container images during your CI workflows.
Features
- Find vulnerabilities for language-specific packages
- Supports Docker, OCI and Singularity image formats
- Consume SBOM attestations
- Scan the contents of a container image or filesystem to find known vulnerabilities
- Find vulnerabilities for major operating system packages
- Currently, Grype is built only for macOS and Linux.
Project Samples
