ctome
/
tldr
mirror of https://github.com/CrimsonTome/tldr.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
tldr/pages/common/osv-scanner.md

29 lines
590 B
Markdown
Raw Normal View History

osv-scanner: add page (#9831) * osv-scanner: add page The Open Source Vulnerability (OSV) Database is a distributed vulnerability database for open source ecosystems. * Apply suggestions from code review Co-authored-by: Jack Lin <blueskyson1401@gmail.com> * osv-scanner: fix syntax --------- Co-authored-by: Jack Lin <blueskyson1401@gmail.com>
2023-02-07 03:00:18 +00:00
# osv-scanner
> Scan various mediums for dependencies and matches them against the OSV database.
> More information: <https://osv.dev/about>.
- Scan a docker image:
`osv-scanner -D {{docker_image_name}}`
- Scan a package lockfile:
`osv-scanner -L {{path/to/lockfile}}`
- Scan an SBOM file:
`osv-scanner -S {{path/to/sbom_file}}`
- Scan multiple directories recursively:
`osv-scanner -r {{directory1 directory2 ...}}`
- Skip scanning git repositories:
`osv-scanner --skip-git {{-r|-D}} {{target}}`
- Output result in JSON format:
`osv-scanner --json {{-D|-L|-S|-r}} {{target}}`