A license scanner for container images and filesystems.
☆149Mar 19, 2026Updated this week
Alternatives and similar repositories for grant
Users that are interested in grant are comparing it to the libraries listed below
Sorting:
- Repository of SBOMs generated by the syft SBOM generator tool, against a list of popular dockerhub container images.☆19Mar 3, 2026Updated 2 weeks ago
- Compare vulnerability scanners results (to make them better!)☆27Updated this week
- a fast changelog generator sourced from PRs and Issues☆62Updated this week
- GitHub Action for creating software bill of materials using Syft.☆227Updated this week
- ☆63Updated this week
- Manage a directory of binaries without a package manager☆52Updated this week
- Jenkins plugin that adds Anchore container image analysis and policy evaluation to Jenkins as a build step☆30Dec 20, 2024Updated last year
- ☆50Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,510Updated this week
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆114Updated this week
- go library for processing container images and simulating a squash filesystem☆106Updated this week
- Scan GitHub Actions Workflow logs for IOCs☆16Mar 16, 2026Updated last week
- ☆17Updated this week
- Binary builds for dep-scan - The Dependency Scanner☆10Apr 1, 2024Updated last year
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆69Updated this week
- Welcome to the atomic future of Linux☆23Updated this week
- Helm charts for Anchore tools and services☆53Updated this week
- Anchore container analysis and scan provided as a GitHub Action☆270Updated this week
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆432Feb 1, 2026Updated last month
- Utility that provides an API and CLI to identify licenses and legal terms☆52Jul 11, 2025Updated 8 months ago
- Grummage is an interactive terminal frontend to Grype☆46Feb 20, 2026Updated last month
- SBOM generator for Debian-based distributions☆26Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆73Feb 24, 2026Updated 3 weeks ago
- A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod☆12Jan 20, 2026Updated 2 months ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated this week
- Deterministically map license strings to their canonical identifiers☆15Mar 3, 2026Updated 2 weeks ago
- T2 hardware enablement for Fedora Atomic Desktops☆24Jan 21, 2026Updated 2 months ago
- Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations☆60Updated this week
- Technical Advisory Council☆136Mar 4, 2026Updated 2 weeks ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆84Updated this week
- A collection of Amateur Radio software packaged for Nix☆27Apr 13, 2023Updated 2 years ago
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆65Mar 16, 2026Updated last week
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- zanadir is an open-source CLI tool that analyzes GitHub repositories and suggests open-source tools to enhance CI/CD best practices.☆165Nov 1, 2025Updated 4 months ago
- Enrich SBOMs with data from third party services☆221Feb 11, 2026Updated last month
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆108Mar 14, 2026Updated last week
- A tool to create, transform and attest VEX metadata☆178Updated this week
- Run ORT in your GitHub action workflow to do licensing, security and best practices checks and generate reports/SBOMs☆33Feb 24, 2026Updated 3 weeks ago
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42May 11, 2023Updated 2 years ago