ghcr.io/owasp-dep-scan/dep-scan:latest linux/amd64

ghcr.io/owasp-dep-scan/dep-scan:latest - 国内下载镜像源浏览次数:20

dep-scan是OWASP（开放Web应用安全项目）提供的依赖项扫描工具，用于检测软件项目中的依赖包是否存在已知安全漏洞，帮助开发者识别并修复依赖相关的安全风险。

源镜像	ghcr.io/owasp-dep-scan/dep-scan:latest
国内镜像	swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest
镜像ID	sha256:520fa445d2d31e93478217165ec06020fbad26be60ce6b81e73aa8dacf07c449
镜像TAG	latest
大小	2.46GB
镜像源	ghcr.io
CMD	depscan
启动入口
工作目录	/app
OS/平台	linux/amd64
浏览量	20 次
贡献者
镜像创建	2026-05-08T16:41:12.211861561Z
同步时间	2026-05-20 17:52

环境变量

PATH=/opt/dep-scan/.venv/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/java/26.0.1-tem/bin:/opt/maven/3.9.15/bin:/opt/gradle/9.5.0/bin:/opt/app-root/go/bin:/usr/local/go/bin:/usr/local/bin/:/root/.local/bin: GOPATH=/opt/app-root/go GO_VERSION=1.26.3 JAVA_VERSION=26.0.1-tem MAVEN_VERSION=3.9.15 GRADLE_VERSION=9.5.0 GRADLE_OPTS=-Dorg.gradle.daemon=false JAVA_HOME=/opt/java/26.0.1-tem MAVEN_HOME=/opt/maven/3.9.15 GRADLE_HOME=/opt/gradle/9.5.0 COMPOSER_ALLOW_SUPERUSER=1 PYTHONUNBUFFERED=1 PYTHONIOENCODING=utf-8 PYTHON_CMD=/usr/bin/python3 CDXGEN_NO_BANNER=true CDXGEN_CMD=cdxgen

镜像标签

OWASP Foundation: maintainer docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/owasp-dep-scan/dep-scan depscan: org.opencontainers.docker.cmd Team AppThreat <cloud@appthreat.com>: org.opencontainers.image.authors 2026-05-08T16:39:22.153Z: org.opencontainers.image.created OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.: org.opencontainers.image.description MIT: org.opencontainers.image.licenses 8a74d713e12cf807ae644130dd889a36d89af792: org.opencontainers.image.revision https://github.com/owasp-dep-scan/dep-scan: org.opencontainers.image.source dep-scan: org.opencontainers.image.title https://github.com/owasp-dep-scan/dep-scan: org.opencontainers.image.url owasp-dep-scan: org.opencontainers.image.vendor v6.2.0-amd64: org.opencontainers.image.version

Chatgpt|Claude一站式支持平台提供先进的AI镜像服务，助你在国内优雅的使用Chatgpt和Claude等AI服务

无权限下载?点我修复生成Docker Run命令生成Kubernetes YAML资源

Docker拉取命令

docker pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest
docker tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest  ghcr.io/owasp-dep-scan/dep-scan:latest

Containerd拉取命令

ctr images pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest
ctr images tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest  ghcr.io/owasp-dep-scan/dep-scan:latest

Shell快速替换命令

sed -i 's#ghcr.io/owasp-dep-scan/dep-scan:latest#swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest#' deployment.yaml

Ansible快速分发-Docker

#ansible k8s -m shell -a 'docker pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest && docker tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest  ghcr.io/owasp-dep-scan/dep-scan:latest'

Ansible快速分发-Containerd

#ansible k8s -m shell -a 'ctr images pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest && ctr images tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest  ghcr.io/owasp-dep-scan/dep-scan:latest'

镜像构建历史


# 2026-05-09 00:41:12  0.00B 设置默认要执行的命令
CMD ["depscan"]
                        
# 2026-05-09 00:41:12  0.00B 设置工作目录为/app
WORKDIR /app
                        
# 2026-05-09 00:41:11  0.00B 指定运行容器时使用的用户
USER owasp
                        
# 2026-05-09 00:41:11  2.38GB 执行命令并创建新的镜像层
RUN |6 TARGETPLATFORM=linux/amd64 JAVA_VERSION=26.0.1-tem MAVEN_VERSION=3.9.15 GRADLE_VERSION=9.5.0 PYTHON_VERSION=3.12 GO_VERSION=1.26.3 /bin/sh -c set -e;     ARCH_NAME="$(rpm --eval '%{_arch}')";     url=;     case "${ARCH_NAME##*-}" in         'x86_64')             GOBIN_VERSION='amd64';             ;;         'aarch64')             GOBIN_VERSION='arm64';             ;;         *) echo >&2 "error: unsupported architecture: '$ARCH_NAME'"; exit 1 ;;     esac;     echo -e "[nodejs]\nname=nodejs\nstream=22\nprofiles=\nstate=enabled\n" > /etc/dnf/modules.d/nodejs.module     && microdnf update -y && microdnf install -y php php-curl php-zip php-bcmath php-json php-pear php-mbstring php-devel make gcc git-core         python3 python3-devel python3-pip diffutils         pcre2 which tar zip unzip sudo nodejs npm ncurses glibc-common glibc-all-langpacks     && python3 --version     && node --version     && curl -s "https://get.sdkman.io" | bash     && source "$HOME/.sdkman/bin/sdkman-init.sh"     && echo -e "sdkman_auto_answer=true\nsdkman_selfupdate_feature=false\nsdkman_auto_env=true\nsdkman_curl_connect_timeout=20\nsdkman_curl_max_time=0" >> $HOME/.sdkman/etc/config     && sdk install java $JAVA_VERSION     && sdk install maven $MAVEN_VERSION     && sdk install gradle $GRADLE_VERSION     && sdk offline enable     && mv /root/.sdkman/candidates/* /opt/     && rm -rf /root/.sdkman     && curl -LO "https://dl.google.com/go/go${GO_VERSION}.linux-${GOBIN_VERSION}.tar.gz"     && tar -C /usr/local -xzf go${GO_VERSION}.linux-${GOBIN_VERSION}.tar.gz     && rm go${GO_VERSION}.linux-${GOBIN_VERSION}.tar.gz     && npm install -g @cyclonedx/cdxgen @appthreat/atom-parsetools     && cdxgen --version     && useradd -ms /bin/bash owasp     && pecl channel-update pecl.php.net     && pecl install timezonedb     && echo 'extension=timezonedb.so' >> /etc/php.ini     && php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');" && php composer-setup.php     && mv composer.phar /usr/local/bin/composer     && python3 -m pip install pipenv certifi     && curl -LsSf https://astral.sh/uv/install.sh | sh     && cd /opt/dep-scan     && uv sync --all-extras --all-packages --no-dev     && uv cache clean     && depscan --help     && cdxgen --help     && atom-tools --help     && which astgen     && which phpastgen     && rm ~/.local/bin/uv ~/.local/bin/uvx     && chown -R owasp:owasp /opt     && chmod a-w -R /opt     && rm -rf /var/cache/yum     && microdnf clean all # buildkit
                        
# 2026-05-09 00:39:27  5.79MB 复制新文件或目录到容器中
COPY . /opt/dep-scan # buildkit
                        
# 2026-05-09 00:39:27  0.00B 设置环境变量 PATH
ENV PATH=/opt/dep-scan/.venv/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/java/26.0.1-tem/bin:/opt/maven/3.9.15/bin:/opt/gradle/9.5.0/bin:/opt/app-root/go/bin:/usr/local/go/bin:/usr/local/bin/:/root/.local/bin:
                        
# 2026-05-09 00:39:27  0.00B 设置环境变量 GOPATH GO_VERSION JAVA_VERSION MAVEN_VERSION GRADLE_VERSION GRADLE_OPTS JAVA_HOME MAVEN_HOME GRADLE_HOME COMPOSER_ALLOW_SUPERUSER PYTHONUNBUFFERED PYTHONIOENCODING PYTHON_CMD CDXGEN_NO_BANNER CDXGEN_CMD
ENV GOPATH=/opt/app-root/go GO_VERSION=1.26.3 JAVA_VERSION=26.0.1-tem MAVEN_VERSION=3.9.15 GRADLE_VERSION=9.5.0 GRADLE_OPTS=-Dorg.gradle.daemon=false JAVA_HOME=/opt/java/26.0.1-tem MAVEN_HOME=/opt/maven/3.9.15 GRADLE_HOME=/opt/gradle/9.5.0 COMPOSER_ALLOW_SUPERUSER=1 PYTHONUNBUFFERED=1 PYTHONIOENCODING=utf-8 PYTHON_CMD=/usr/bin/python3 CDXGEN_NO_BANNER=true CDXGEN_CMD=cdxgen
                        
# 2026-05-09 00:39:27  0.00B 定义构建参数
ARG GO_VERSION=1.26.3
                        
# 2026-05-09 00:39:27  0.00B 定义构建参数
ARG PYTHON_VERSION=3.12
                        
# 2026-05-09 00:39:27  0.00B 定义构建参数
ARG GRADLE_VERSION=9.5.0
                        
# 2026-05-09 00:39:27  0.00B 定义构建参数
ARG MAVEN_VERSION=3.9.15
                        
# 2026-05-09 00:39:27  0.00B 定义构建参数
ARG JAVA_VERSION=26.0.1-tem
                        
# 2026-05-09 00:39:27  0.00B 定义构建参数
ARG TARGETPLATFORM=linux/amd64
                        
# 2026-05-09 00:39:27  0.00B 添加元数据标签
LABEL maintainer=OWASP Foundation org.opencontainers.image.authors=Team AppThreat <cloud@appthreat.com> org.opencontainers.image.source=https://github.com/owasp-dep-scan/dep-scan org.opencontainers.image.url=https://owasp.org/www-project-dep-scan org.opencontainers.image.version=6.2.x org.opencontainers.image.vendor=owasp-dep-scan org.opencontainers.image.licenses=MIT org.opencontainers.image.title=dep-scan org.opencontainers.image.description=Fully open-source security audit tool for project dependencies based on known vulnerabilities and advisories org.opencontainers.docker.cmd=docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/owasp-dep-scan/dep-scan depscan
                        
# 2026-05-02 17:06:28  0.00B 设置默认要执行的命令
CMD ["/bin/bash"]
                        
# 2026-05-02 17:06:28  73.79MB 复制新文件或目录到容器中
COPY /mnt/sys-root/ / # buildkit

镜像信息

{
    "Id": "sha256:520fa445d2d31e93478217165ec06020fbad26be60ce6b81e73aa8dacf07c449",
    "RepoTags": [
        "ghcr.io/owasp-dep-scan/dep-scan:latest",
        "swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan:latest"
    ],
    "RepoDigests": [
        "ghcr.io/owasp-dep-scan/dep-scan@sha256:2c4e664db8637442e06603fab2caf1484acef5556fd7fb63a9950f824b2bcec7",
        "swr.cn-north-4.myhuaweicloud.com/ddn-k8s/ghcr.io/owasp-dep-scan/dep-scan@sha256:e8d034353e16bec7eb320e7e378b2dded316b3dcb716727366977d24c4f31950"
    ],
    "Parent": "",
    "Comment": "buildkit.dockerfile.v0",
    "Created": "2026-05-08T16:41:12.211861561Z",
    "Container": "",
    "ContainerConfig": null,
    "DockerVersion": "",
    "Author": "",
    "Config": {
        "Hostname": "",
        "Domainname": "",
        "User": "owasp",
        "AttachStdin": false,
        "AttachStdout": false,
        "AttachStderr": false,
        "Tty": false,
        "OpenStdin": false,
        "StdinOnce": false,
        "Env": [
            "PATH=/opt/dep-scan/.venv/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/java/26.0.1-tem/bin:/opt/maven/3.9.15/bin:/opt/gradle/9.5.0/bin:/opt/app-root/go/bin:/usr/local/go/bin:/usr/local/bin/:/root/.local/bin:",
            "GOPATH=/opt/app-root/go",
            "GO_VERSION=1.26.3",
            "JAVA_VERSION=26.0.1-tem",
            "MAVEN_VERSION=3.9.15",
            "GRADLE_VERSION=9.5.0",
            "GRADLE_OPTS=-Dorg.gradle.daemon=false",
            "JAVA_HOME=/opt/java/26.0.1-tem",
            "MAVEN_HOME=/opt/maven/3.9.15",
            "GRADLE_HOME=/opt/gradle/9.5.0",
            "COMPOSER_ALLOW_SUPERUSER=1",
            "PYTHONUNBUFFERED=1",
            "PYTHONIOENCODING=utf-8",
            "PYTHON_CMD=/usr/bin/python3",
            "CDXGEN_NO_BANNER=true",
            "CDXGEN_CMD=cdxgen"
        ],
        "Cmd": [
            "depscan"
        ],
        "ArgsEscaped": true,
        "Image": "",
        "Volumes": null,
        "WorkingDir": "/app",
        "Entrypoint": null,
        "OnBuild": null,
        "Labels": {
            "maintainer": "OWASP Foundation",
            "org.opencontainers.docker.cmd": "docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/owasp-dep-scan/dep-scan depscan",
            "org.opencontainers.image.authors": "Team AppThreat \u003ccloud@appthreat.com\u003e",
            "org.opencontainers.image.created": "2026-05-08T16:39:22.153Z",
            "org.opencontainers.image.description": "OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.",
            "org.opencontainers.image.licenses": "MIT",
            "org.opencontainers.image.revision": "8a74d713e12cf807ae644130dd889a36d89af792",
            "org.opencontainers.image.source": "https://github.com/owasp-dep-scan/dep-scan",
            "org.opencontainers.image.title": "dep-scan",
            "org.opencontainers.image.url": "https://github.com/owasp-dep-scan/dep-scan",
            "org.opencontainers.image.vendor": "owasp-dep-scan",
            "org.opencontainers.image.version": "v6.2.0-amd64"
        }
    },
    "Architecture": "amd64",
    "Os": "linux",
    "Size": 2456440318,
    "GraphDriver": {
        "Data": {
            "LowerDir": "/var/lib/docker/overlay2/7ab4ba9fd824141061d7343ce8224aa3995e8b593ca897b1e35a4a25d0dd923c/diff:/var/lib/docker/overlay2/4164460e34126b2b361051045e872cdeb46dd7dd05ca83c52e6025dc06675896/diff:/var/lib/docker/overlay2/ef114bf8374235b44cf2bea796a34fb464e727c7b2e309fbed0fa385d80ed07c/diff",
            "MergedDir": "/var/lib/docker/overlay2/8c4f91fcb6a6d03576495ce548577a8be24abfaf8bbe0e19f13deee50b3441f8/merged",
            "UpperDir": "/var/lib/docker/overlay2/8c4f91fcb6a6d03576495ce548577a8be24abfaf8bbe0e19f13deee50b3441f8/diff",
            "WorkDir": "/var/lib/docker/overlay2/8c4f91fcb6a6d03576495ce548577a8be24abfaf8bbe0e19f13deee50b3441f8/work"
        },
        "Name": "overlay2"
    },
    "RootFS": {
        "Type": "layers",
        "Layers": [
            "sha256:2851a5c6657f3d19af3656d6e59e72fba88289dcee97a8268c817b047ba0e9e0",
            "sha256:8ccc22e823b9e83ad2cd87513b15f5a87252d40ca1ae15b113ef4ed7673cd980",
            "sha256:5232152dd736a88d0a407a9af68c97fd325bed9beb7c0a48a23f6ee0e8f5e5fe",
            "sha256:50d3000aa53193325af4d1a8fde6097bcfdc6e5fcc7b5216462fb4e6ca45066b"
        ]
    },
    "Metadata": {
        "LastTagTime": "2026-05-20T17:49:28.022488985+08:00"
    }
}

更多版本

ghcr.io/owasp-dep-scan/dep-scan:latest

linux/amd64 ghcr.io2.46GB2026-05-20 17:52