Redirected from 
README
¶
docker-scan
Snyk CLI Plugin PoC
Install snyk
On macOS:
brew tap snyk/tap && brew install snyk
Other OSes: See their doc
How to build and install docker scan
- You have make and go installed:
$ make install
- You have only make and docker (of course):
$ make dbuild
$ cp bin/docker-scan ~/.docker/cli-plugins
- You have only docker:
$ @docker build . --output type=local,dest=./bin --target scan
Now check it's working:
$ docker scan
"docker run" requires at least 1 argument.
See 'docker scan --help'.
How to use it
First you need to authenticate to snyk.
- Using snyk CLI
$ snyk auth
It opens a browser page, you need to login, eventually using your github account.
- You can then use
docker scan DOCKER_IMAGE:
$ docker scan hello-world
Testing hello-world...
Organization: silvin-lubecki
Package manager: linux
Project name: docker-image|hello-world
Docker image: hello-world
Licenses: enabled
✓ Tested 0 dependencies for known issues, no vulnerable paths found.
Note that we do not currently have vulnerability data for your image.
- Authenticate using
docker scan --auth SNYK_AUTH_TOKEN DOCKER_IMAGE. You need first to get your API token
$ docker scan --auth c68dc480-27bd-45ee-9f5c-XXXXXXXXXXXX hello-world
Authenticating to Snyk using c68dc480-27bd-45ee-9f5c-XXXXXXXXXXXX
Your account has been authenticated. Snyk is now ready to be used.
Authenticated
Testing hello-world...
Organization: silvin-lubecki
Package manager: linux
Project name: docker-image|hello-world
Docker image: hello-world
Licenses: enabled
✓ Tested 0 dependencies for known issues, no vulnerable paths found.
Note that we do not currently have vulnerability data for your image.
Directories
Click to show internal directories.
Click to hide internal directories.