How Automatically Scan Docker Images For Vulnerabilities Using Amazon Elastic Container Registry

Written by sudip-sengupta | Published 2020/07/14
Tech Story Tags: docker | security | containers | orchestration | docker-image | amazon | aws | ecr | web-monetization

TLDR Amazon Elastic Container Registry (ECR) can now be setup to automatically scan images on push. ECR image scanning uses the Common Vulnerabilities and Exposures database from the Clair project. Clair analyses each layer of the Docker image, then returns vulnerabilities that might affect the image. These vulnerabilities are then shown to us in the AWS Console or we can fetch them via the AWS Command Line Interface (CLI) ECR offers these features:automatically scan on pushing an image to ECR. An event is sent to AWS EventBridge when an image scan completes, allowing for further automation.via the TL;DR App
no story
Written by sudip-sengupta | Solution Architect | Technical Consultant
Published by HackerNoon on 2020/07/14
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy