Source: thenewstack.io
Find Vulnerabilities in Container Images with Docker ScanCategory: Docker, nginx
As you continue to shift your development process to cloud native computing, you’ll find yourself working with more and more container images. Those images might be officially vetted by the company that produced them (such as those from Red Hat, Canonical, Rocky Linux, NGINX, and AlmaLinux), or they might come from third-party sources that might not hold the same level of trust those larger companies have.
Here’s the catch, unlike much of what you can do with Docker Desktop, the scanner is a command-line only tool.
I’m going to show you how to do just that after I introduce you to how the command is run on the macOS version of Docker Desktop.
And that’s all there is to scanning Docker container images with the docker scan command, from either Docker Desktop or the Docker Engine on Linux.
Here’s the catch, unlike much of what you can do with Docker Desktop, the scanner is a command-line only tool.
I’m going to show you how to do just that after I introduce you to how the command is run on the macOS version of Docker Desktop.
And that’s all there is to scanning Docker container images with the docker scan command, from either Docker Desktop or the Docker Engine on Linux.
Related Articles
Community Partners
DevOps Careers