Skip to main content

vulkro intel

Threat-intelligence bundles shipped with Vulkro. Each subsystem maintains a small, curated catalogue baked into the binary (known-compromised npm packages, known-bad public Docker images, and similar). The catalogues are deliberately small: false-positive cost dominates the quiet false-negative gap. For breadth, overlay the GitHub Advisory feed and your own vendor advisory feeds.

Sub-commands

vulkro intel status
Sub-commandDescription
statusPrint the provenance for every shipped intel bundle: name, version, SHA-256 of the canonical bytes, entry count, and last-updated date.

intel status flags

FlagDescriptionDefault
--format <FORMAT>table (default) or json.table

Exit codes

  • 0 all bundles loaded.
  • 2 internal error (bundle parse failure).

Example

vulkro intel status --format json | jq '.[].name'