Whalescan is a Windows Container Vulnerability Scanner that performs several report checks as well as CVE vulnerability packages on the container. Also checks config and Docker files for incorrect settings. This tool can be used as part of a Windows container review of local duplicates of containers and the host itself to enhance security.
Installation and use
git clone https://github.com/saira-h/whalescan
pip install -r requirements.txt
You can download the program from here.