osv-scanner

Scan various mediums for dependencies and matches them against the OSV database. More information: https://osv.dev/about.

osv-scanner -D docker_image_name

osv-scanner -L path/to/lockfile

osv-scanner -S path/to/sbom_file

osv-scanner -r directory1 directory2 ...

osv-scanner --skip-git -r|-D target

osv-scanner --json -D|-L|-S|-r target