Our great sponsors
-
syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
I have a requirement to assure that the container image we build runs in UTC only. I'd like to avoid starting it up just to check the link on /etc/localtime. I thought maybe a tool like dive that evaluates the contents of the image would do the trick. Clearly dive has that info, but it is outside it's scope to provide it. I also looked at syft and grype, but it seems they focus on packages, not files.
I have a requirement to assure that the container image we build runs in UTC only. I'd like to avoid starting it up just to check the link on /etc/localtime. I thought maybe a tool like dive that evaluates the contents of the image would do the trick. Clearly dive has that info, but it is outside it's scope to provide it. I also looked at syft and grype, but it seems they focus on packages, not files.
I have a requirement to assure that the container image we build runs in UTC only. I'd like to avoid starting it up just to check the link on /etc/localtime. I thought maybe a tool like dive that evaluates the contents of the image would do the trick. Clearly dive has that info, but it is outside it's scope to provide it. I also looked at syft and grype, but it seems they focus on packages, not files.
Related posts
- Launch HN: EdgeBit (YC W23) – live software vulnerability analysis
- Building a software bill of materials (SBOM) using open source tools
- Keeping up with dependencies like a boss
- Wake-up call: why it's urgent to deal with your hardcoded credentials
- 3 ways to improve your OSS project's resilience for Hacktoberfest