search
Get Started
search
Grype - Containerization
zoom_in Click to enlarge

Grype

language

description Grype Overview

Grype is an open-source tool that scans container images and filesystems for known software vulnerabilities using signatures and Bill of Materials (SBOM) data. (142 characters)

help Grype FAQ

What does Grype scan for?

Grype is an open-source vulnerability scanner from Anchore. It scans container images, filesystems, archives, and SBOMs for known CVEs and package vulnerabilities.

How is Grype related to Syft?

Syft generates SBOMs, while Grype can consume SBOM data to find vulnerabilities. Both tools are part of Anchore's open-source container security ecosystem.

Can Grype scan a Docker image directly?

Yes, a typical use is scanning an image such as alpine:latest or a built application container. It can also scan local directories when you want vulnerability results before pushing an image.

How does Grype compare with Trivy?

Both Grype and Trivy scan containers and software dependencies for vulnerabilities. Teams often compare them on database coverage, SBOM support, output formats, CI integration, and false-positive handling.

Reviews & Comments

Write a Review

rate_review

Be the first to review

Share your thoughts with the community and help others make better decisions.

Save to your list

Save your favorites and follow how their scores change over time.

Save favorites
Get updates
Compare scores

Already have an account? Sign in

Compare Items

See how they stack up against each other

Comparing
VS
Select 1 more item to compare