Also strong
Vulnerability scanner for container images and filesystems using Anchore’s vulnerability DB and Syft SBOM input.
vulnerabilitycontainerssbomci
Browse & filter
Filter by platform, license text, maturity, maintenance cadence, and editorial tags like privacy-focused or self-hosted. Search matches names, summaries, tags, and use cases.
4 tools match your filters
Also strong
CLI and library for generating SBOMs (SPDX, CycloneDX) from images, directories, and archives.
sbomsupply-chaincompliancecontainers
Also strong
Continuous SBOM analysis platform tracking component vulnerabilities, policies, and audit trails for supply chain risk.
sbomsupply-chainowaspvulnerabilityself-hosted
Also strong
Google tool to find known vulnerabilities in open source dependencies from lockfiles, SBOMs, or directories using the OSV database.
scadependenciescvedevsecopssbom