Yandex Cloud
  • Services
  • Solutions
  • Why Yandex Cloud
  • Blog
  • Pricing
  • Documentation
  • Contact us
Get started
Language / Region
Yandex project
© 2023 Yandex.Cloud LLC
Yandex Container Registry
  • Getting started
  • Step-by-step instructions
    • All instructions
    • Authentication in Container Registry
    • Managing a Docker image
      • Getting information about available Docker images
      • Creating a Docker image
      • Pushing a Docker image to a registry
      • Pulling a Docker image from a registry
      • Deleting a Docker image from a registry
    • Managing Helm charts
      • Getting information about available Helm charts
      • Pushing a Helm chart to a registry
      • Pulling a Helm chart from a registry
      • Deleting a Helm chart from a registry
    • Managing a registry
      • Getting information about existing registries
      • Creating a registry
      • Updating a registry
      • Deleting a registry
    • Managing a repository
      • Getting information about existing repositories
      • Creating a repository
    • Managing Docker image lifecycle policies
      • Getting information about existing lifecycle policies
      • Creating a lifecycle policy
      • Updating a lifecycle policy
      • Performing lifecycle policy dry runs
      • Deleting a lifecycle policy
    • Scanning Docker images for vulnerabilities
    • Working with roles
      • Assigning a role
      • Viewing assigned roles
      • Revoking a role
  • Yandex Container Solution
  • Practical guidelines
    • All tutorials
    • Running a Docker image on a VM
    • Creating a trigger with Yandex Cloud Functions
    • Setting up automatic scanning of a Docker image
  • Concepts
    • Overview
    • Docker image
    • Docker volume
    • Registry
    • Repository
    • Docker image lifecycle policies
    • Vulnerability scanner
    • Yandex Cloud Functions trigger
    • Backups
    • Quotas and limits
  • Access management
  • Pricing policy
  • API reference
    • Authentication in the API
    • gRPC
      • Overview
      • ImageService
      • LifecyclePolicyService
      • RegistryService
      • RepositoryService
      • ScannerService
      • OperationService
    • REST
      • Overview
      • Image
        • Overview
        • delete
        • get
        • list
      • LifecyclePolicy
        • Overview
        • create
        • delete
        • dryRun
        • get
        • getDryRunResult
        • list
        • listDryRunResultAffectedImages
        • listDryRunResults
        • update
      • Registry
        • Overview
        • create
        • delete
        • get
        • list
        • listAccessBindings
        • listIpPermission
        • setAccessBindings
        • setIpPermission
        • update
        • updateAccessBindings
        • updateIpPermission
      • Repository
        • Overview
        • delete
        • get
        • getByName
        • list
        • listAccessBindings
        • setAccessBindings
        • updateAccessBindings
        • upsert
      • Scanner
        • Overview
        • get
        • getLast
        • list
        • listVulnerabilities
        • scan
  • Troubleshooting
  • Questions and answers
  1. Concepts
  2. Vulnerability scanner

Vulnerability scanner

Written by
Yandex Cloud

    Vulnerability scanner is a service that enables you to statically analyze a Docker image and compare its contents with the CVE vulnerability databases.

    Vulnerability scanner only works with Docker images from Container Registry. At the same time, you can scan Docker images that you have access to as a user.

    For scanning, a Docker image is unpacked, and a search is performed for installed package versions (deb). The package versions identified are then checked against a database of known vulnerabilities.

    Currently, Docker images are available and built for the following supported operating systems:

    • Alpine 3.10
    • Alpine 3.11
    • Alpine 3.12
    • Alpine 3.13
    • Alpine 3.14
    • Alpine 3.15
    • Alpine 3.16
    • Alpine 3.17
    • CentOS 5
    • CentOS 6
    • CentOS 7
    • CentOS 8
    • Debian 7
    • Debian 8
    • Debian 9
    • Debian 10
    • Debian 11
    • Redhat 8.0
    • Redhat 8.1
    • Redhat 8.2
    • Redhat 8.3
    • Redhat 8.4
    • Redhat 8.5
    • Redhat 8.6
    • Redhat 9.0
    • Redhat 9.1
    • Ubuntu 14.04
    • Ubuntu 16.04
    • Ubuntu 18.04
    • Ubuntu 20.04
    • Ubuntu 20.10
    • Ubuntu 21.04
    • Ubuntu 21.10
    • Ubuntu 22.04

    Was the article helpful?

    Language / Region
    Yandex project
    © 2023 Yandex.Cloud LLC