Description
Scans container images, filesystems, repositories, and infrastructure artifacts for known vulnerabilities and misconfigurations. It helps teams add security checks to CI before deploying software.
Scanner findings need triage. Databases can be stale, false positives happen, and secrets or private package names may appear in reports.