Projects
Overview of Anchore Open Source tools
Tag: grype
Grype DB v5 schema EOL
Users running Grype versions older than v0.88.0 will stop receiving vulnerability database updates on March 6, 2026.
Getting Started
Use Grype to scan your container images, directories, or archives for known vulnerabilities.
Grype Command Line Reference
Categories:
Grype
Architecture and design of the Grype vulnerability scanner
Categories:
Grype
Developer guidelines when contributing to Grype
Categories:
Installing Grype
Supported Scan Targets
Explore the different scan targets Grype supports including container images, directories, SBOMs, and individual packages
Grype Configuration Reference
Categories:
Supported package ecosystems
Learn how Grype selects vulnerability data for different package types and what level of accuracy to expect
Vulnerability Scanning
Learn how to scan container images, filesystems, and SBOMs for known software vulnerabilities.
Understanding Grype results
Learn how to read and interpret Grype’s vulnerability scan output, including match types, confidence levels, and result reliability
Contributing
Guidelines for developing & contributing to Anchore Open Source projects
End-of-Life distro detection
Understand how Grype detects packages from end-of-life Linux distributions and why vulnerability data may be incomplete
Working with JSON
Learn how to work with Grype’s native JSON format
Filter scan results
Control which vulnerabilities Grype reports using filtering flags, configuration rules, and VEX documents
Verifying Downloads
Verifying release assets after downloading
Vulnerability Database
Using the Grype Vulnerability Database
Private Registries
Configure authentication for scanning container images from private registries using credentials, registry tokens, and credential helpers.
Configuration Rules
Configuration patterns and options used across all Anchore OSS tools