HN Showcase
Back to browse
GitHub Repository

🐳 Find and digest-pin official container base images in seconds - Python, .NET, Java, Go, Node.js, Rust, Ubuntu, and more.

1 starsPython

Image-inspector – find base images, see CVE counts, pin by digest

by anmalkov·Jun 26, 2026·1 point·0 comments
Visit ProjectView on HN

AI Analysis

●●SolidSolve My ProblemBig Brain

Precomputed CVE data means no Docker daemon or local Trivy scan needed.

Strengths
  • Inspect base images before writing FROM — workflow positioned correctly
  • Nightly precomputed vulnerability data fetched from GitHub Pages
  • Generates immutable digest-pinned lines for reproducible builds
Weaknesses
  • Approximate CVE counts from precomputed data, not live scanning
  • Container security space is crowded (Trivy, Snyk, Docker Scout)
Target Audience

DevOps engineers, backend developers writing Dockerfiles

Similar To

Trivy · Docker Scout · Renovate

Similar Projects