Skip to main content
Customer Support Customer Support

Docker lets security bug sniffer dogs off the leash at container images

  • May 10, 2016
  • 2 replies
  • 0 views
Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54

Libraries and other code scanned for known programming blunders

 
                               


 
10 May 2016 at 13:00, Chris Williams Docker has hit upon an idea that perhaps other platforms could potentially incorporate: scanning software components for publicly known vulnerabilities prior to deployment.
 
Today, the software container biz will announce Docker Security Scanning, which scours private repositories in the Docker Cloud for recognized security bugs and alerts developers if any are found. The feature will be expanded to Docker Datacenter customers later this year.
 
Specifically, this opt-in service scans a Docker image when it is pushed to the Docker cloud, and programmatically builds a bill-of-materials (BOM) of the image's software components.
 
Full Article
    RetiredTripleHelix
    Baldrick

    2 replies

    Baldrick
    Gold VIP
    • Baldrick
    • Gold VIP
    • May 10, 2016
    Interesting approach that may well yield dividends. Will be an interesting one to keep an eye on. ;)
    Webroot SecureAnywhere Complete Beta Tester v9.0.24.49, imaged by Macrium Reflect v7.2
    Jasper_The_Rasper
    Jasper_The_Rasper
    Moderator
    Forum|alt.badge.img+54
    @ wrote:
    Interesting approach that may well yield dividends. Will be an interesting one to keep an eye on. ;)
    It is interesting but I am surprised nobody has thought of this before now.
    Baldrick
    Terms & ConditionsAccessibility statement