grype_me

Version updated for https://github.com/TomTonic/grype_me to version v1.3.11-release.

• This action is used across all versions by 0 repositories.

Action Type

This is a Docker action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

This GitHub Action, grype_me, automates vulnerability scanning for software projects using Anchore Grype. It supports scanning source code, container images, directories, or SBOM files to identify known vulnerabilities, and generates dynamic shields.io badges linked to detailed reports hosted on GitHub Gists. By simplifying nightly scans, leveraging a pre-downloaded vulnerability database, and providing customizable failure thresholds, it enhances security workflows while saving time and resources.

What’s Changed

What’s Changed

• Update module github.com/go-git/go-git/v5 (1 medium an 1 low CVE) to v5.17.2 by @renovate[bot] in https://github.com/TomTonic/grype_me/pull/62
• Update modules ProtonMail/go-crypto to v1.4.1 and golang.org/x/crypto, golang.org/x/net, golang.org/x/sys to latest versions
• Update build dependency tomli to v2.4.1 by @renovate[bot] in https://github.com/TomTonic/grype_me/pull/60
• Update build dependency codecov/codecov-action action to v6 by @renovate[bot] in https://github.com/TomTonic/grype_me/pull/61

Full Changelog: https://github.com/TomTonic/grype_me/compare/v1.3.10-release...v1.3.11-release

• TomTonic
• GitHub Actions