Jetstack Paranoia: A New Open-Source Tool for Container Image Security

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
#Security #Vulnerability #cloud-native-buildpacks #Containers #Malware

Our great sponsors
  • SonarQube - Static code analysis for 29 languages.
  • InfluxDB - Access the most powerful time series database as a service
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • grype

    A vulnerability scanner for container images and filesystems

    I was also a bit confused and expected something like grype -https://github.com/anchore/grype

  • packj

    Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

  • SonarQube

    Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

  • pack

    CLI for building apps using Cloud Native Buildpacks

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts