commands.sh

grype

all

Vulnerability scanner for container images and filesystems.

More info →

Options (3)

-o, --outputboolean

Scan an image and display results in a specific format

Example: grype {{image:tag}} {{[-o|--output]}} {{json|table|cyclonedx|cyclonedx-json|sarif|template}}
-f, --fail-onboolean

Scan an image and fail on vulnerabilities with a severity at or above the given level

Example: grype {{image:tag}} {{[-f|--fail-on]}} {{negligible|low|medium|high|critical}}
-h, --helpboolean

Display help

Example: grype {{[-h|--help]}}

Examples (8)

Scan a container image

grype image:tag

Scan an image and display results in a specific format

grype image:tag [-o|--output] json|table|cyclonedx|cyclonedx-json|sarif|template

Scan an image, ignoring unfixed vulnerabilities

grype image:tag --only-fixed

Scan an image and fail on vulnerabilities with a severity at or above the given level

grype image:tag [-f|--fail-on] negligible|low|medium|high|critical

Scan a local directory and save the report to a file

grype path/to/directory --file path/to/report

Update the vulnerability database

grype db update

Display the current database status

grype db status

Display help

grype [-h|--help]
made by @shridhargupta | data from tldr-pages