grype icon indicating copy to clipboard operation
grype copied to clipboard
verified publisher icon anchore

Add Support for CleanStart Packages

Open cleanstart-community-admin opened this issue 4 weeks ago • 2 comments

Hello there, Grype

I am Community Admin at CleanStart (https://www.cleanstart.com/). CleanStart is building secure container images for enterprise and community.

Recognized on OSV https://github.com/ossf/osv-schema/tree/74be9c8acf3873eccde9499d6e1db39c6d4b9a1e?tab=readme-ov-file CleanStart Security Advisory Repository: https://github.com/cleanstart-dev/cleanstart-security-advisories CleanStart Verified publisher on Docker Hub: https://hub.docker.com/u/cleanstart

We would like to recognize in Grype scanner also. Please suggest process for the same.

Best Regards, Community Admin CleanStart

cleanstart-community-admin avatar Nov 26 '25 13:11 cleanstart-community-admin

Hi @cleanstart-community-admin, it looks like you only have one CVE mentioned in the referenced dataset, have I missed something?

kzantow avatar Nov 26 '25 16:11 kzantow

Hello @kzantow for the reply.

We have huge dataset of global CVEs and our own dataset of CVEs, and are in the process to make them OSV compliant. ETA to have the logic implemented by 10 Dec. Meanwhile, we are also looking for integration with Grype. So looking for process for the same, and include in our plan.

cleanstart-community-admin avatar Nov 28 '25 04:11 cleanstart-community-admin