sbomscanner

module

v0.10.4 Latest Latest Go to latest Published: Apr 7, 2026 License: Apache-2.0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/kubewarden/sbomscanner

Links

Open Source Insights

README ¶

SBOMscanner

License GitHub branch check runs GitHub contributors

A SBOM-centric security scanner for Kubernetes.

This is still being developed. For additional details, please refer to the RFC.

Documentation

Installation

Usage

Troubleshooting

Collecting logs

Development

Contributing guidelines

Contact

Get in touch with us on Slack: join the kubewarden channel hosted by the official Kubernetes workspace 👨‍💻 💬 👩‍💻

Credits

The storage API server is based on the Kubernetes sample-apiserver project.

Directories ¶

Path	Synopsis
api Package api contains all the API types of SBOMscanner.	Package api contains all the API types of SBOMscanner.
storage Package storage contains API Schema definitions for the SBOMscanner storage API group.	Package storage contains API Schema definitions for the SBOMscanner storage API group.
storage/install Package install manages the installation of storage types for SBOMscanner.	Package install manages the installation of storage types for SBOMscanner.
storage/v1alpha1 Package v1alpha1 contains the storage v1alpha1 types for SBOMscanner.	Package v1alpha1 contains the storage v1alpha1 types for SBOMscanner.
v1alpha1 Package v1alpha1 contains API Schema definitions for the SBOMscanner v1alpha1 API group.	Package v1alpha1 contains API Schema definitions for the SBOMscanner v1alpha1 API group.
cmd
controller command
storage command
worker command
internal
apiserver Package apiserver contains the API server extension implementation of the SBOMscanner storage component.	Package apiserver contains the API server extension implementation of the SBOMscanner storage component.
apiserver/admission Package admission provides admission plugins for validating API requests.	Package admission provides admission plugins for validating API requests.
cel Package cel contains utilities for evaluating CEL (Common Expression Language) expressions.	Package cel contains utilities for evaluating CEL (Common Expression Language) expressions.
cmdutil Package cmdutil contains helpers used by the cmd pacakge.	Package cmdutil contains helpers used by the cmd pacakge.
controller Package controller contains the resources reconciliation logic.	Package controller contains the resources reconciliation logic.
filters Package filters contains the logic of the filters used to limit the amount of image to scan.	Package filters contains the logic of the filters used to limit the amount of image to scan.
handlers Package handlers manages the scanning process for SBOMscanner.	Package handlers manages the scanning process for SBOMscanner.
handlers/dockerauth Package dockerauth provides functions to setup Docker authentication for private registries using the `config.json` file defined inside of a Kubernetes Secret.	Package dockerauth provides functions to setup Docker authentication for private registries using the `config.json` file defined inside of a Kubernetes Secret.
handlers/registry Package registry manages communication with registries.	Package registry manages communication with registries.
handlers/registry/mocks
handlers/trivyreport Package trivyreport provides utility functions for converting Trivy reports into the SBOMScanner VulnerabilityReport format.	Package trivyreport provides utility functions for converting Trivy reports into the SBOMScanner VulnerabilityReport format.
messaging Package messaging abstracts the communication with NATS.	Package messaging abstracts the communication with NATS.
messaging/mocks
storage Package storage provides the persistence layer for SBOMscanner.	Package storage provides the persistence layer for SBOMscanner.
storage/repository Package repository provides interfaces and implementations for data storage and retrieval.	Package repository provides interfaces and implementations for data storage and retrieval.
webhook/v1alpha1 Package v1alpha1 contains the controller's webhooks.	Package v1alpha1 contains the controller's webhooks.
pkg
generated/applyconfiguration
generated/applyconfiguration/internal
generated/applyconfiguration/storage/v1alpha1
generated/clientset/versioned
generated/clientset/versioned/fake This package has the automatically generated fake clientset.	This package has the automatically generated fake clientset.
generated/clientset/versioned/scheme This package contains the scheme of the automatically generated clientset.	This package contains the scheme of the automatically generated clientset.
generated/clientset/versioned/typed/storage/v1alpha1 This package has the automatically generated typed clients.	This package has the automatically generated typed clients.
generated/clientset/versioned/typed/storage/v1alpha1/fake Package fake has the automatically generated clients.	Package fake has the automatically generated clients.
generated/informers/externalversions
generated/informers/externalversions/internalinterfaces
generated/informers/externalversions/storage
generated/informers/externalversions/storage/v1alpha1
generated/listers/storage/v1alpha1
generated/openapi

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL