Anchore is a tool that scans Docker images for common vulnerabilities and not so common vulnerabilities if you purchase the paid version. However, the free version is useful and should still be used on your team to avoid common vulnerabilities.
A full step by step guide to building a DevSecOps Pipeline with Github Actions for GoLang to demonstrate what DevSecOps is.
Learn how to use the Open Source Kube Bench tool to check how securely configured your Kubernetes Cluster is or isn't.
Docker Bench is a free open source tool from the makers of Docker themselves that will help identify whether or not your docker installation and images have vulnerabilities.