Docker 101: Docker Scout

Docker 101: Docker Scout

PART XII

ยท

1 min read

when we create container images for our applications we're essentially stacking layers of existing images and software components however some of these layers or components might have security vulnerabilities making our containers and their applications susceptible to attacks

Dockers Scout is a tool that helps us be proactive about security it scans our container images looks at old the layers and software pieces like building blocks inside them and creates a detailed list called a Software Bill Of Materials (SBOM) for short this list includes everything our container is made of.

Then Docker Scout checks the list against an always updated database of known vulnerabilities it's like having a continuously updated list of potential weak points if it finds any it lets us know so we can fix them before deploying our application

we can use Docker Scout in different places like:

  • Docker desktop

  • Docker Hub

  • commands in Docker command line interface

REFERENCE

ย