Python sample app using pip package manager

Building

This app has uses a vulnerable version of gunicorn (Pip-installed dependency), and pip.

pack build pip-sample --buildpack paketo-buildpacks/python --sbom-output-dir sbom-content

Looking for vulnerabilities

Snyk on image

docker scan pip-sample

Locates OS-based vulnerabilities, but no Pip-related vulnerabilities.

Grype on image

grype pip-sample

Locates OS-level vulnerabilities AND high-severity gunicorn vulnerability

Grype on SBOM

grype sbom:sbom-content/build/paketo-buildpacks_pip/pip/sbom.syft.json
grype sbom:sbom-content/launch/paketo-buildpacks_pip-install/packages/sbom.syft.json

Locates high-severity gunicorn vulnerability AND high-severity pip vulnerability

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
templates		templates
Procfile		Procfile
README.md		README.md
requirements.txt		requirements.txt
server.py		server.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Python sample app using pip package manager

Building

Looking for vulnerabilities

Snyk on image

Grype on image

Grype on SBOM

About

Uh oh!

Releases

Packages

Languages

sophiewigmore/pip-sample

Folders and files

Latest commit

History

Repository files navigation

Python sample app using pip package manager

Building

Looking for vulnerabilities

Snyk on image

Grype on image

Grype on SBOM

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages