Grype is an open-source vulnerability scanner for container images and filesystems developed by Anchore.

Does it support SBOMs?

Yes, Grype works seamlessly with SBOMs generated by tools like Syft and supports industry-standard formats like CycloneDX and SPDX.

Which vulnerability databases does it pull from?

Grype leverages a wide range of sources including the NVD, GitHub Advisories, and specific security trackers for Alpine, Red Hat, Debian, and Ubuntu.

Can I use this skill to fail builds in CI/CD?

Yes, this skill provides commands to set severity thresholds that can automatically fail CI/CD pipelines if vulnerabilities meeting your criteria are discovered.

Container Vulnerability Scanning with Grype

Name: Container Vulnerability Scanning with Grype
Author: mukul975

bymukul975

•

4,120

•

セキュリティとテスト

Scans container images and SBOMs for known vulnerabilities using Anchore Grype to ensure secure deployment pipelines.

This skill empowers Claude to perform deep security analysis of containerized environments using Anchore Grype. It identifies known Common Vulnerabilities and Exposures (CVEs) across various operating systems and application packages by matching image contents against multiple security databases including NVD and GitHub Advisories. It is particularly useful for developers and DevSecOps engineers who need to automate security audits, validate container integrity in CI/CD pipelines, or perform ad-hoc risk assessments of third-party images.

主な機能

01Automated vulnerability database management and updates

02Configurable severity thresholds for automated build failure

034,120 GitHub stars

04Support for multiple output formats including JSON, SARIF, and CycloneDX

05Scan container images, filesystems, and SBOMs for known CVEs

06Integration with Syft for SBOM-based vulnerability matching

ユースケース

01Automating security gates in GitHub Actions or GitLab CI pipelines

02Performing ad-hoc security audits of third-party Docker Hub images

03Generating compliance reports and SARIF files for security dashboards

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills scanning-container-images-with-grype

For use in Claude.ai and ChatGPT

主な機能

01Automated vulnerability database management and updates

02Configurable severity thresholds for automated build failure

034,120 GitHub stars

04Support for multiple output formats including JSON, SARIF, and CycloneDX

05Scan container images, filesystems, and SBOMs for known CVEs

06Integration with Syft for SBOM-based vulnerability matching

ユースケース

01Automating security gates in GitHub Actions or GitLab CI pipelines

02Performing ad-hoc security audits of third-party Docker Hub images

03Generating compliance reports and SARIF files for security dashboards

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills scanning-container-images-with-grype

For use in Claude.ai and ChatGPT