Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Makefile: add experimental report-tool
grype
`grype` is a security scanner for container images etc. Golang tools are among the supported scan targets. $> grype . ✔ Vulnerability DB [no update available] ✔ Indexed . ✔ Cataloged packages [66 packages] ✔ Scanning image... [2 vulnerabilities] ├── 0 critical, 2 high, 0 medium, 0 low, 0 negligible └── 0 fixed NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY github.com/opencontainers/runc v1.1.4 go-module GHSA-vpvm-3wq2-2wvm High This commit adds it to the Makefile to have it at hand every now and then.
- Loading branch information