Docker Image Security Scans
Security scans play an important part in not only ensuring the uptime of your applications but also making sure you are not running outdated, unpatched, or vulnerable container images. Security scans should be performed on all images used by your team and in your environment. It doesn't matter if you have created them from scratch and you trust them; it's still an important step in reducing the potential risk within your environment. This section of the chapter will go through two options for scanning images that can easily be adopted by your development teams.
By implementing a security scan of our Docker images, we hope to achieve the following:
- We need to keep a database of known and up-to-date vulnerabilities or use an application that will keep this database on our behalf.
- We scan our Docker images against this database of vulnerabilities, not only verifying that the underlying operating system is safe and patched but also...