mirror of
https://github.com/webinstall/webi-installers.git
synced 2026-04-05 18:06:50 +00:00
13ea83f963
These files are no longer loaded at runtime. All release data now comes
from _cache/YYYY-MM/{pkg}.json files generated by the Go webicached daemon.
Deleted:
- 94 {pkg}/releases.js files (per-package upstream fetchers)
- 8 _common/*.js files (github.js, gitea.js, git-tag.js, fetcher.js, etc.)
Updated:
- _webi/classify-one.js: reads from cache instead of require(releases.js)
- Fixed hardcoded triplet key to use dynamic lookup
title, homepage, tagline
| title | homepage | tagline |
|---|---|---|
| Grype | https://github.com/anchore/grype/ | Grype is a vulnerability scanner for container images and filesystems. |
To update or switch versions, run webi grype@stable (or @v0.6, @beta, etc)
Files
~/.config/envman/PATH.env
~/.grype.yaml
~/.local/bin/grype
Cheat Sheet
It also helps find vulnerabilities for major operating system and language-specific packages. Supports Docker, OCI and Singularity image formats, OpenVEX support for filtering and augmenting scanning results. Works with
syft, a powerfulSBOM(software bill of materials) tool for container images and file systems
How to for vulnerabilities in an image
grype <image>
How to scan all image layers
grype <image> --scope all-layers
How to scan a running container
docker run --rm \
--volume /var/run/docker.sock:/var/run/docker.sock \
--name Grype anchore/grype:latest \
my_image_name:my_image_tag