Skip to content

Docker

Docker

cehckov

It scans cloud infrastructure provisioned using Terraform, Terraform plan, Cloudformation, AWS SAM, Kubernetes, Helm charts, Kustomize, Dockerfile, Serverless, Bicep, OpenAPI or ARM Templates and detects security and compliance misconfigurations using graph-based scanning.

https://github.com/bridgecrewio/checkov

Tools

Install Dockle
Install Hadolint
Install Trivy
Install Anchore
Install [Clair]https://github.com/arminc/clair-local-scan & https://github.com/arminc/clair-scanner)
Instal Inspec
Install OpenSCAP
Activate Snyk

Dockle

hadolint

Trivy

Scan for Vulnerabilities:

trivy image python:3.4-alpine

https://github.com/aquasecurity/trivy