https://github.com/homelabforge/vulnforge
Container vulnerability scanning and compliance platform powered by Trivy
https://github.com/homelabforge/vulnforge
docker management scanner security trivy
Last synced: 1 day ago
JSON representation
Container vulnerability scanning and compliance platform powered by Trivy
- Host: GitHub
- URL: https://github.com/homelabforge/vulnforge
- Owner: homelabforge
- License: mit
- Created: 2025-12-22T23:05:22.000Z (7 months ago)
- Default Branch: main
- Last Pushed: 2026-07-01T17:33:03.000Z (16 days ago)
- Last Synced: 2026-07-01T19:22:06.092Z (16 days ago)
- Topics: docker, management, scanner, security, trivy
- Language: Python
- Homepage: https://homelabforge.io/builds/vulnforge/
- Size: 2.79 MB
- Stars: 1
- Watchers: 1
- Forks: 0
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
Awesome Lists containing this project
README
Container Security Insights for Your Homelab
[](https://github.com/homelabforge/vulnforge/actions/workflows/ci.yml)
[](https://github.com/homelabforge/vulnforge/actions/workflows/codeql.yml)
[](https://github.com/homelabforge/vulnforge/actions/workflows/publish.yml)
[](https://github.com/homelabforge/vulnforge/pkgs/container/vulnforge)
[](https://www.python.org)
[](https://react.dev)
[&label=Bun&color=000000&logo=bun&logoColor=white&prefix=v)](https://bun.sh)
[](LICENSE)
[](https://discord.gg/6XttnVgG)
---

---
## Key Features
- **Vulnerability Scanning** - Trivy integration with KEV tagging, CVSS scoring, and comprehensive history
- **Compliance Monitoring** - Native CIS compliance checks with weekly reporting
- **Image Efficiency Analysis** - Dive layer analysis for optimization insights
- **Secret Detection** - Scan for exposed credentials with false-positive triage
- **Real-time Progress** - SSE-powered scan status updates
- **7 Notification Services** - Gotify, Pushover, Slack, Discord, Telegram, Email, ntfy
- **Activity Logging** - Complete audit trail of all operations
- **Database Encryption** - AES-128 encryption for sensitive fields
- **Light/Dark Theme** - Automatic system preference detection
- **Self-Hosted** - Your data stays on your infrastructure
**Default Mode**: Runs with no authentication for easy setup. Configure authentication in Settings before exposing to the internet.
**Deployment Note**: VulnForge must run as a single worker (`--workers 1`). The scan queue, compliance state, and settings cache use in-process memory. Do not increase Granian workers — this will cause duplicate scans and stale data.
📖 **[Complete Installation Guide](https://github.com/homelabforge/vulnforge/wiki/Installation)**
## Support
- **📚 Documentation**: [GitHub Wiki](https://github.com/homelabforge/vulnforge/wiki)
- **🌐 Website**: [homelabforge.io/builds/vulnforge](https://homelabforge.io/builds/vulnforge/)
- **🐛 Bug Reports**: [GitHub Issues](https://github.com/homelabforge/vulnforge/issues)
- **💬 Discussions**: [GitHub Discussions](https://github.com/homelabforge/vulnforge/discussions)
---
## License
MIT License - see [LICENSE](LICENSE) file for details.
---
## Acknowledgments
Built for homelabbers who want comprehensive container security insights without relying on third-party services.
Part of the [HomelabForge](https://homelabforge.io) ecosystem.
### Development Assistance
VulnForge was developed through AI-assisted pair programming with **Claude** and **Codex**, combining human vision with AI capabilities for architecture, security patterns, and implementation.