scanning-container-images-with-grype
CommunityFind vulnerable packages in container images fast.
Software Engineering#vulnerability management#sbom#json report#container scanning#anchore grype#supply-chain security#ci cd security gate
Authorriandeoliveira
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It helps you quickly identify known vulnerabilities in container images so you can reduce supply-chain risk and enforce security gates before deployment.
Core Features & Use Cases
- Container vulnerability scanning with Grype: Scans images, local directories, archives, OCI layouts, and SBOMs to surface CVEs with severity details.
- SBOM-based matching: Uses Syft-generated SBOMs (SPDX/CycloneDX) to improve package-to-CVE correlation for reproducible scans.
- Thresholds and reporting: Applies configurable severity gating (e.g., fail on High/Critical) and produces structured JSON/markdown reports for CI/CD and audits.
- Use case: Scan every newly built image in a pipeline and block merges when Critical/High vulnerabilities exceed an agreed threshold.
Quick Start
Run the Grype scan agent against your container image and fail the job when vulnerabilities exceed your chosen severity threshold.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: scanning-container-images-with-grype Download link: https://github.com/riandeoliveira/aspnet-template/archive/main.zip#scanning-container-images-with-grype Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.