EN
ENNA

Grype vs OSV-Scanner

Grype

โšก Vulnerability Scanning ยท Go

OSV-Scanner

โšก Vulnerability Scanning ยท Go

GitHub Stats

11.9k
Stars
8.7k
774
Forks
560
394
Issues
110
12d ago
Updated
today
Apache-2.0
License
Apache-2.0
Go
Language
Go

About Grype

Grype is a vulnerability scanner for container images and filesystems that identifies known vulnerabilities by matching installed packages against CVE databases. It provides detailed reports and integrates with SBOM to enhance software supply chain security. Grype's capabilities in scanning and its focus on container security make it an essential tool for DevOps teams and security professionals. Its support for multiple image formats and package managers broadens its applicability in modern development workflows.

About OSV-Scanner

Google's dependency vulnerability scanner using the OSV.dev database across multiple language ecosystems.

Platform Support

๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Tags

Grype only

container-securitycve-scanningsbomimage-scanning

OSV-Scanner only

dependency-scanningscasupply-chaincve
View Grype DetailsView OSV-Scanner Details