Skip to content

Security

check image packages/CVEs

install syft and grype

curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin
curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin

check packages

syft ubuntu:18.04
syft <repo>:1.0.0

check CVEs

grype ubuntu:18.04
grype <repo>:1.0.0

or use Snyk to scan the docker hub image to check vulnerabilities or security weakness. https://docs.snyk.io/scan-using-snyk/snyk-container/scan-container-images