Analyze vulnerabilities in Docker images

This page summarizes the projects mentioned and recommended in the original post on /r/selfhosted
Containers Security Vulnerability Docker Golang

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • grype

    A vulnerability scanner for container images and filesystems

    • #!/bin/bash # Install Grype # https://github.com/anchore/grype # sudo curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sudo sh -s -- -b /usr/local/bin ONLY_HIGH=${1:-'yes'} echo "ONLY_HIGH: $ONLY_HIGH" GRYPE_ARGS=${2:-'--only-fixed'} echo "GRYPE_ARGS: $GRYPE_ARGS" DOCKER_IMAGES=$(docker ps --format '{{.Image}}') for IMAGE in $DOCKER_IMAGES do echo "Docker image: $IMAGE" if [[ "$ONLY_HIGH" == "yes" ]]; then grype "$IMAGE" "$GRYPE_ARGS" | grep -i High else grype "$IMAGE" "$GRYPE_ARGS" fi echo "================================" done

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts