Versions:
Grype 0.111.0 is a security utility published by Anchore Inc that specializes in detecting vulnerabilities inside container images and filesystems. Operating within the Security category, the open-source scanner compares the software bill of materials (SBOM) generated by Anchore’s companion tool Syft against continuously updated threat databases, producing a concise report that lists CVE identifiers, severity ratings, and the affected packages. Typical use cases include automated image scanning in CI/CD pipelines, pre-deployment checks in Kubernetes environments, forensic analysis of compromised hosts, and periodic audits of local directories or archived container layers. Because Grype is distributed as a single self-contained binary, it can be dropped into any build agent, laptop, or server without further configuration, making it equally attractive to individual developers and enterprise platform teams. The project has evolved rapidly: Anchore has released forty-six tagged versions since inception, incrementally adding support for additional Linux distributions, language-specific package managers, and proprietary vulnerability feeds, while refining output formats to integrate cleanly with popular issue trackers and security dashboards. Version 0.111.0 continues this trajectory by incorporating the latest National Vulnerability Database snapshots and improving detection accuracy for Alpine, Debian, and Red Hat based images. Users who already rely on Syft for SBOM generation can chain the two tools with a single command, ensuring that every build artifact is accompanied by an up-to-date vulnerability assessment. Grype is available for free on get.nero.com, where downloads are delivered through trusted Windows package sources such as winget, always providing the newest release and enabling batch installation alongside other applications.
Tags: