On this TechRepublic Tips on how to Make Tech Work tutorial, Jack Wallen reveals you add the Docker Scout function to the Docker CLI.
You may need heard of Docker Scout, which is a picture analyzer that ships with Docker Desktop. This device makes it simple for builders to view vulnerabilities present in Docker photographs. Contemplating you do not need to deploy a container primarily based on a picture with quite a few vulnerabilities, this device needs to be thought of a must-use.
Despite the fact that Scout ships with Docker Desktop, it isn’t included within the Docker CLI – no less than not the neighborhood version of Docker. Happily, we will add it with out an excessive amount of hassle. Right here’s how.
I’m going to imagine you have already got the Docker runtime engine put in. With that out of the way in which, create the mandatory listing with the command mkdir -p ~/.docker/cli-plugins.
After you’ve created the listing, obtain the mandatory file with the command wget https://github.com/docker/scout-cli/releases/download/v0.15.0/docker-scout_0.15.0_linux_amd64.tar.gz. Unpack the file with the command tar xvzf *.tar.gz. Transfer the docker-scout file into the correct listing with the command mv docker-scout ~/.docker/cli-plugins/. Give the file executable permissions with chmod +x ~/.docker/cli-plugins/docker-scout.
Now you can analyze a picture with a command like docker scout quickview nginx:newest. The outcomes will let you know what number of vulnerabilities have been found within the picture, and you’ll resolve if you wish to try to mitigate the issues or discover a totally different picture to make use of.
Keep in mind: The safety of your container deployments lives and dies on a basis of safe photographs, so Docker Scout will probably be an important part in your workflow.
Subscribe to TechRepublic’s How To Make Tech Work on YouTube for all the most recent tech recommendation for enterprise professionals from Jack Wallen.