description Grype Overview
Grype is an open-source tool that scans container images and filesystems for known software vulnerabilities using signatures and Bill of Materials (SBOM) data. (142 characters)
help Grype FAQ
What does Grype scan for?
Grype is an open-source vulnerability scanner from Anchore. It scans container images, filesystems, archives, and SBOMs for known CVEs and package vulnerabilities.
How is Grype related to Syft?
Syft generates SBOMs, while Grype can consume SBOM data to find vulnerabilities. Both tools are part of Anchore's open-source container security ecosystem.
Can Grype scan a Docker image directly?
Yes, a typical use is scanning an image such as alpine:latest or a built application container. It can also scan local directories when you want vulnerability results before pushing an image.
How does Grype compare with Trivy?
Both Grype and Trivy scan containers and software dependencies for vulnerabilities. Teams often compare them on database coverage, SBOM support, output formats, CI integration, and false-positive handling.
explore Explore More
Similar to Grype
See all arrow_forwardReviews & Comments
Write a Review
Be the first to review
Share your thoughts with the community and help others make better decisions.