DepKeep

OSS Support Hub / Security

Go Security Apache-2.0 Latest: v1.46.0

Syft

CLI tool and Go library for generating a Software Bill of Materials (SBOM) from container images

GitHub
Health Metrics

Project Health at a Glance

Live data from GitHub, updated daily.

9.2K+131
GitHub Stars
📦
v1.46.0
Latest Release · 3 days ago
🔄
15d
Avg. Release Cadence
🐛
615
Open Issues
📅
3 days ago
Last Commit
🔒
✓ Clean
No Active CVEs

Data last fetched: 2026-06-29

Security

Known Vulnerabilities

✓ No active CVEs found for Syft in OSV.dev

Ecosystem

Alternatives to Syft

Other Security projects in the Go ecosystem worth evaluating.

trivy spdx-tools cdxgen
Get Help

Support Options for Syft

Enterprise Support via DepKeep

Get SLA-backed support, security patches, and direct access to senior engineers for Syft — without relying on volunteer maintainers.

Talk to an Expert →

Community Channels

GitHub Discussions →Slack →