Link to this headingDocker

Link to this headingImage Scanning

Link to this headinggrype

>>> grype dir:/home/generalzero/docker/ Vulnerability DB [updated] Indexed /home/generalzero/docker Cataloged packages [738 packages] Scanning image... [4 vulnerabilities] ├── 1 critical, 2 high, 1 medium, 0 low, 0 negligible └── 4 fixed NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY got 9.6.0 11.8.5 npm GHSA-pfrx-2q88-qq97 Medium http-cache-semantics 4.1.0 4.1.1 npm GHSA-rc47-6667-2j5j High json5 2.2.1 2.2.2 npm GHSA-9c47-m6qq-7p4h High simple-git 3.15.1 3.16.0 npm GHSA-9w5j-4mwv-2wj8 Critical

Link to this headingConfiguration Scanning

Link to this headingcheckov

Run Scan:

checkov --directory .

Link to this headingTools

Install Dockle
Install Hadolint
Install Trivy
Install Anchore and anchore-cli
Install Clair and clair-scanner
Install Inspec
Install OpenSCAP
Activate Snyk

Link to this headingDockle

Link to this headinghadolint

Link to this headingTrivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Scan for Vulnerabilities:

trivy image python:3.4-alpine