Join us

ContentUpdates and recent posts about Grype..
 Activity
devopslinks
@devopslinks added a new tool Grype , 51 minutes ago.
Course
eon01
@eon01 published a course, an hour ago
Founder, FAUN.dev

DevSecOps in Practice

#AppSec  #DevOps  #DevSecO...  #SecDevO...  #Securit... 
TruffleHog Flask NeuVector detect-secrets pre-commit OWASP Dependency-Check Docker checkov Bandit Hadolint Grype KubeLinter Syft GitLab CI/CD Trivy Kubernetes

A Hands-On Guide to Operationalizing DevSecOps at Scale

DevSecOps in Practice
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email

|

Sell your course on FAUN.dev
Grype, developed by Anchore, is an open source vulnerability scanner that inspects container images, SBOMs, and filesystems for known CVEs. It supports multiple ecosystems, including Debian, Alpine, Red Hat, Python, Ruby, Go, and Java. Grype integrates with Syft for SBOM generation and provides precise, reproducible results with minimal configuration. Developers use it in CI pipelines, GitOps workflows, and security audits to enforce secure build practices and maintain supply chain visibility. Its speed, accuracy, and integration-first design make it a popular choice in DevSecOps environments.