Skip to content
This repository has been archived by the owner on Sep 26, 2024. It is now read-only.
/ scan-containers Public archive

Python script that uses grype to scan containers for vulnerabilities.

Notifications You must be signed in to change notification settings

concur1/scan-containers

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

scan-containers

Script to create and scan nix containers.

The script will:

  • Create one or more nix files that will be used to build one or more container images.
  • Create and load those container images.
  • Run grype on those container images.
  • Run grype on a extra list of container images.
  • Print a table with a count of the vulns for each image.

How to run:

  1. Update the scan-containers.py file with the nix package and channel you want to examine.
  2. With nix installed run: nix-shell
  3. In the nix shell run python scan-containers.py
  4. Check the image_data folder for csv's detailing the vulnerabilities for each image.

About

Python script that uses grype to scan containers for vulnerabilities.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published