Not an expert in this but because of the recent log4j been diving into security scanners and grype shows a number of vulnerabilities in a recent update to v3.6.6.
At least on my install.
Anyone have feedback or input on this?
Pretty easy to use the open source scanner.