Source: www.docker.com
Secure from the Start: Shift Vulnerability Scanning Left in Docker DesktopCategory: Security, Data
Application delivery velocity can be tripped up when security vulnerabilities are discovered after an app is deployed into production. Nothing is more detrimental to shipping new features to customers than having to go back and address vulnerabilities discovered in an app or image you already released. At Docker, we believe the best way to balance the needs for speed and security is to shift security left in the app delivery cycle as an integral part of the development process.
This allows Docker users to trigger local Docker file and local image scans directly from the Docker Desktop CLI.With the combination of Docker Scan and Snyk, developers gain visibility into open source vulnerabilities that can have a negative impact on the security of container images.
Scans return scanned image data, including: Invoking scanning through Docker Desktop CLI allows you to iteratively test for new vulnerabilities, while working on image updates, by: You can start taking advantage of this today in the latest release of Docker Desktop Edge.
This allows Docker users to trigger local Docker file and local image scans directly from the Docker Desktop CLI.With the combination of Docker Scan and Snyk, developers gain visibility into open source vulnerabilities that can have a negative impact on the security of container images.
Scans return scanned image data, including: Invoking scanning through Docker Desktop CLI allows you to iteratively test for new vulnerabilities, while working on image updates, by: You can start taking advantage of this today in the latest release of Docker Desktop Edge.
Related Articles
Community Partners
DevOps Careers