BOSSC (Meterian Container Scanner) is a Software Composition Analysis (SCA) tool designed to identify and mitigate vulnerabilities within container images. It performs automated security checks throughout the development lifecycle, scanning containers for known vulnerabilities and compliance issues. The scanner integrates with CI/CD pipelines and supports a wide range of programming languages and repositories. The tool uses a combination of open source and proprietary scanning technologies to deliver results with minimal false positives. Scan results are surfaced through the Meterian dashboard, which provides actionable insights and detailed reports. Reports include: - A full Software Bill of Materials (SBOM) - License information - Upgrade paths for vulnerable components - Output in HTML, JSON, and PDF formats By scanning containers early in the development process, BOSSC aims to detect vulnerabilities before they reach production. It supports ongoing security hygiene through regular scanning as part of continuous integration and deployment workflows, and assists teams in maintaining compliance with industry standards and regulations.