ctome
/
tldr
mirror of https://github.com/CrimsonTome/tldr.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
tldr/pages/common/osv-scanner.md

29 lines
590 B
Markdown
Raw Normal View History

osv-scanner: add page (#9831) * osv-scanner: add page The Open Source Vulnerability (OSV) Database is a distributed vulnerability database for open source ecosystems. * Apply suggestions from code review Co-authored-by: Jack Lin <blueskyson1401@gmail.com> * osv-scanner: fix syntax --------- Co-authored-by: Jack Lin <blueskyson1401@gmail.com>
2023-02-07 03:00:18 +00:00
# osv-scanner
> Scan various mediums for dependencies and matches them against the OSV database.
> More information: <https://osv.dev/about>.
- Scan a docker image:
`osv-scanner -D {{docker_image_name}}`
- Scan a package lockfile:
`osv-scanner -L {{path/to/lockfile}}`
- Scan an SBOM file:
`osv-scanner -S {{path/to/sbom_file}}`
- Scan multiple directories recursively:
`osv-scanner -r {{directory1 directory2 ...}}`
pages*: fix brand and technical names (#12145) * pages*: fix Python, Java, pacman, apt, *zip*, xz, tar, git, RPM and grep names * pages*: fix brand and technical names Co-authored-by: Lena <126529524+acuteenvy@users.noreply.github.com> * fluxctl, gitmoji, in-toto-run, osv-scanner: replace `git` with Git * bzegrep: enclose egrep with backticks Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> * git-bug: use Git instead of `git` Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> * git-bug: use Git instead of `git` Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> * git-force-clone: use Git instead of `git` Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> * gitwatch: use Git instead of `git` Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> * hub-init: use Git instead of `git` Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com> * pages.*: use Linux instead of GNU/Linux --------- Co-authored-by: Lena <126529524+acuteenvy@users.noreply.github.com> Co-authored-by: Sebastiaan Speck <12570668+sebastiaanspeck@users.noreply.github.com>
2024-01-30 04:46:32 +00:00
- Skip scanning Git repositories:
osv-scanner: add page (#9831) * osv-scanner: add page The Open Source Vulnerability (OSV) Database is a distributed vulnerability database for open source ecosystems. * Apply suggestions from code review Co-authored-by: Jack Lin <blueskyson1401@gmail.com> * osv-scanner: fix syntax --------- Co-authored-by: Jack Lin <blueskyson1401@gmail.com>
2023-02-07 03:00:18 +00:00
`osv-scanner --skip-git {{-r|-D}} {{target}}`
- Output result in JSON format:
`osv-scanner --json {{-D|-L|-S|-r}} {{target}}`