Skip to main content
Home
Browse packagesDocsSign in

@fluentci/grype@0.5.0
Built and signed on GitHub Actions

latest
fluent-ci-templates/grype-pipeline

🧩 A ready-to-use CI/CD Pipeline for scanning vulnerabilities in your project with Grype.

This package works with Node.js, Deno, Bun
This package works with Node.js
This package works with Deno
This package works with Bun
JSR Score
76%
Published
2 years ago (0.5.0)

Grype Pipeline

fluentci pipeline deno compatibility dagger-min-version ci

A ready-to-use CI/CD Pipeline for scanning vulnerabilities in your project with Grype.

🚀 Usage

Run the following command:

fluentci run grype_pipeline

Or, if you want to use it as a template:

fluentci init -t grype

This will create a .fluentci folder in your project.

Now you can run the pipeline with:

fluentci run .

🧩 Dagger Module

Use as a Dagger Module:

dagger install github.com/fluent-ci-templates/grype-pipeline@main

Call a function from the module:

dagger call scan --image hashicorp/terraform:1.6 --fail-on critical

🛠️ Environment variables

Variable Description
GRYPE_IMAGE The image to scan
GRYPE_DIR The directory to scan
GRYPE_SBOM The SBOM file to scan
GRYPE_VERSION The version of Grype to use. Defaults to latest
GRYPE_FAIL_ON Set the return code to 1 if a vulnerability is found with a severity >= the given severity. Possible values: negligible, low, medium, high, critical

✨ Jobs

Job Description
scan Scan for vulnerabilities 
scan(
  src: Directory | string,
  image?: string,
  failOn?: string
): Promise<string>

👨‍💻 Programmatic usage

You can also use this pipeline programmatically:

import { scan } from "jsr:@fluentci/grype";

await scan(".");
Built and signed on
GitHub Actions
View transparency log

New Ticket: Report package

Please provide a reason for reporting this package. We will review your report and take appropriate action.

Please review the JSR usage policy before submitting a report.

Add Package

deno add jsr:@fluentci/grype

Import symbol

import * as grype from "@fluentci/grype";
or

Import directly with a jsr specifier

import * as grype from "jsr:@fluentci/grype";

Add Package

pnpm i jsr:@fluentci/grype
or (using pnpm 10.8 or older)
pnpm dlx jsr add @fluentci/grype

Import symbol

import * as grype from "@fluentci/grype";

Add Package

yarn add jsr:@fluentci/grype
or (using Yarn 4.8 or older)
yarn dlx jsr add @fluentci/grype

Import symbol

import * as grype from "@fluentci/grype";

Add Package

vlt install jsr:@fluentci/grype

Import symbol

import * as grype from "@fluentci/grype";

Add Package

npx jsr add @fluentci/grype

Import symbol

import * as grype from "@fluentci/grype";

Add Package

bunx jsr add @fluentci/grype

Import symbol

import * as grype from "@fluentci/grype";