Skip to content

sysdiglabs/secure-image-scanning

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
docker-entrypoint.sh
docker-entrypoint.sh
 
 

Repository files navigation

Sysdig Secure Image Scanning

This directory contains the Dockerfile and entrypoint for sysdiglabs/secure-image-scanning

This Docker image does an static scanning looking for vulnerabilities in the image provided.

Usage

docker run -e IMAGE_TO_SCAN="docker.io/library/ubuntu:latest" \ -e SYSDIG_SECURE_TOKEN="xxXXxxXXXxxXX" \ sysdiglabs/secure-image-scanning

Environment variables used as parameters

  • IMAGE_TO_SCAN: The image which is going to be scanned i.e.: docker.io/library/debian:latest
  • SYSDIG_SECURE_TOKEN: The Sysdig Secure API Token.
  • TIMEOUT: Timeout for the image scanning, by default is 10 minutes.
  • MAX_RETRIES: Sometimes when analyzing the images, the registry takes some time for sending the image and it could lead to a Not Found error. So we implemented a retrying mechanism. By default it tries 3 times before giving up.

Makefile usage

The Makefile contains 3 targets:

  • all: Builds the image and pushes it to DockerHub
  • build: Builds the image
  • push: Pushes the image to DockerHub

About

Image scanning with Sysdig Secure

sysdig.com/blog/bamboo-sysdig-secure/

Topics

security-tools container-security

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages