Vulnerability Intelligence
Vulnerability Intelligence
Go beyond a CVE count — drill into packages, licenses, base images, and version-to-version deltas.
The portal turns the raw scan + SBOM data behind every image into answers a security team actually asks:
| Tool | Portal location | Answers |
|---|---|---|
| Software Inventory | Inventory → Packages | "Which of my images ship this package, and under what license?" |
| Base-image Lineage | Inventory → Base images | "If Alpine ships an openssl CVE, how many images does it hit?" |
| Version Compare | Image detail → Compare | "What changed between r5 and r6?" |
| CVE Search | Vuln table → click a CVE | "Which of my images carry CVE-2024-xxxx, and how bad is it?" |
| Reports | Reports | Fleet posture + severity trend over time |
Every one is built from the same signed SBOM (SPDX + CycloneDX) and grype scan we publish with each image — nothing is estimated.