On this TechRepublic The best way to Make Tech Work tutorial, Jack Wallen reveals you how one can add the Docker Scout characteristic to the Docker CLI.
You may need heard of Docker Scout, which is a picture analyzer that ships with Docker Desktop. This device makes it simple for builders to view vulnerabilities present in Docker photographs. Contemplating you do not need to deploy a container primarily based on a picture with quite a few vulnerabilities, this device ought to be thought-about a must-use.
Regardless that Scout ships with Docker Desktop, it isn’t included within the Docker CLI – not less than not the group version of Docker. Fortuitously, we are able to add it with out an excessive amount of hassle. Right here’s how.
I’m going to imagine you have already got the Docker runtime engine put in. With that out of the way in which, create the required listing with the command mkdir -p ~/.docker/cli-plugins.
After you’ve created the listing, obtain the required file with the command wget https://github.com/docker/scout-cli/releases/download/v0.15.0/docker-scout_0.15.0_linux_amd64.tar.gz. Unpack the file with the command tar xvzf *.tar.gz. Transfer the docker-scout file into the right listing with the command mv docker-scout ~/.docker/cli-plugins/. Give the file executable permissions with chmod +x ~/.docker/cli-plugins/docker-scout.
Now you can analyze a picture with a command like docker scout quickview nginx:newest. The outcomes will let you know what number of vulnerabilities have been found within the picture, and you may determine if you wish to try to mitigate the issues or discover a completely different picture to make use of.
Keep in mind: The safety of your container deployments lives and dies on a basis of safe photographs, so Docker Scout shall be a vital part in your workflow.
Subscribe to TechRepublic’s How To Make Tech Work on YouTube for all the newest tech recommendation for enterprise professionals from Jack Wallen.