Vulnerability scanner
Written by
Vulnerability scanner is a service that enables you to statically analyze a Docker image and compare its contents with the CVE vulnerability databases.
Vulnerability scanner only works with Docker images from Container Registry. At the same time, you can scan Docker images that you have access to as a user.
For scanning, a Docker image is unpacked, and a search is performed for installed package versions (deb). The package versions identified are then checked against a database of known vulnerabilities.
Currently, Docker images are available and built for the following supported operating systems:
- Alpine 3.10
- Alpine 3.11
- Alpine 3.12
- Alpine 3.13
- Alpine 3.14
- Alpine 3.15
- Alpine 3.16
- Alpine 3.17
- CentOS 5
- CentOS 6
- CentOS 7
- CentOS 8
- Debian 7
- Debian 8
- Debian 9
- Debian 10
- Debian 11
- Redhat 8.0
- Redhat 8.1
- Redhat 8.2
- Redhat 8.3
- Redhat 8.4
- Redhat 8.5
- Redhat 8.6
- Redhat 9.0
- Redhat 9.1
- Ubuntu 14.04
- Ubuntu 16.04
- Ubuntu 18.04
- Ubuntu 20.04
- Ubuntu 20.10
- Ubuntu 21.04
- Ubuntu 21.10
- Ubuntu 22.04