On this TechRepublic The way to Make Tech Work tutorial, Jack Wallen reveals you add the Docker Scout characteristic to the Docker CLI.
You might need heard of Docker Scout, which is a picture analyzer that ships with Docker Desktop. This instrument makes it simple for builders to view vulnerabilities present in Docker photos. Contemplating you don’t want to deploy a container based mostly on a picture with quite a few vulnerabilities, this instrument ought to be thought-about a must-use.
Despite the fact that Scout ships with Docker Desktop, it isn’t included within the Docker CLI – not less than not the group version of Docker. Fortuitously, we will add it with out an excessive amount of hassle. Right here’s how.
I’m going to imagine you have already got the Docker runtime engine put in. With that out of the best way, create the required listing with the command mkdir -p ~/.docker/cli-plugins.
After you’ve created the listing, obtain the required file with the command wget https://github.com/docker/scout-cli/releases/obtain/v0.15.0/docker-scout_0.15.0_linux_amd64.tar.gz. Unpack the file with the command tar xvzf *.tar.gz. Transfer the docker-scout file into the correct listing with the command mv docker-scout ~/.docker/cli-plugins/. Give the file executable permissions with chmod +x ~/.docker/cli-plugins/docker-scout.
Now you can analyze a picture with a command like docker scout quickview nginx:newest. The outcomes will inform you what number of vulnerabilities have been found within the picture, and you’ll determine if you wish to try to mitigate the issues or discover a totally different picture to make use of.
Bear in mind: The safety of your container deployments lives and dies on a basis of safe photos, so Docker Scout can be a vital part in your workflow.
Subscribe to TechRepublic’s How To Make Tech Work on YouTube for all the most recent tech recommendation for enterprise professionals from Jack Wallen.