A vulnerability scanner for container images and filesystems. [1]
As 'root'...
curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
Other steps on this page assume /usr/local/bin in in your PATHFor example, to report vulnerabilities for Oracle SQL Developer installed in /opt/sqldeveloper...
cd /opt/sqldeveloper
grype . | more
The above example was for version 19.4 of SQL Developer. Note how the number of vulnerbilites reduces when testing version 21.4 instead...
✔ Vulnerability DB [no update available] ✔ Indexed . ✔ Cataloged packages [998 packages] ✔ Scanned image [14 vulnerabilities]NAME INSTALLED FIXED-IN VULNERABILITY SEVERITY batik-all 1.11.0.0.1 CVE-2019-17566 High batik-all 1.11.0.0.1 CVE-2020-11987 High commons-io 2.6 2.7 GHSA-gwrp-pvrq-jmwv Medium commons-io 2.6 CVE-2021-29425 Medium httpclient 4.5.10 4.5.13 GHSA-7r82-7xv7-xcpj Medium httpclient 4.5.10 CVE-2020-13956 Medium jsch-agentproxy-core 0.0.8 CVE-2016-5725 Medium jsch-agentproxy-pageant 0.0.8 CVE-2016-5725 Medium jsch-agentproxy-sshagent 0.0.8 CVE-2016-5725 Medium jsch-agentproxy-usocket-jna 0.0.8 CVE-2016-5725 Medium org.eclipse.equinox.common_3.6.0.v20100503 3.6.0.v20100503 CVE-2021-41033 High svnClientAdapter r2847 (February 23 2010) CVE-2007-2448 Low svnClientAdapter r2847 (February 23 2010) CVE-2007-3846 Medium svnClientAdapter r2847 (February 23 2010) CVE-2009-2411 High