bomber
Scans SBoMs for security vulnerabilities
Details
Category: Scanners
Publisher: trickest-mhmdiaa
Created Date: 9/26/2022
Container: quay.io/trickest/bomber:v0.3.2
Source URL: https://github.com/devops-kung-fu/bomber
Parameters
debug
boolean
Command:
--debug
- Displays debug level log messages.token
string
Command:
--token
- The API token for the provider being used.output
string
Command:
--output
- How bomber should output findings (json, xml, stdout) (default stdout)provider
string
Command:
--provider
- The vulnerability provider (ossindex, osv). (default osv)username
string
Command:
--username
- The user name for the provider being used.sbom-file
file
requiredCommand:
- Single SBOM filesbom-folder
folder
requiredCommand:
- Scan a folder of SBOMs