October 2, 2023

On this TechRepublic The way to Make Tech Work tutorial, Jack Wallen exhibits you learn how to add the Docker Scout function to the Docker CLI.

You may need heard of Docker Scout, which is a picture analyzer that ships with Docker Desktop. This software makes it straightforward for builders to view vulnerabilities present in Docker photographs. Contemplating you don’t want to deploy a container primarily based on a picture with quite a few vulnerabilities, this software needs to be thought of a must-use.

Despite the fact that Scout ships with Docker Desktop, it isn’t included within the Docker CLI – at the very least not the group version of Docker. Fortuitously, we will add it with out an excessive amount of bother. Right here’s how.

I’m going to imagine you have already got the Docker runtime engine put in. With that out of the best way, create the mandatory listing with the command mkdir -p ~/.docker/cli-plugins.

After you’ve created the listing, obtain the mandatory file with the command wget https://github.com/docker/scout-cli/releases/download/v0.15.0/docker-scout_0.15.0_linux_amd64.tar.gz. Unpack the file with the command tar xvzf *.tar.gz. Transfer the docker-scout file into the right listing with the command mv docker-scout ~/.docker/cli-plugins/. Give the file executable permissions with chmod +x ~/.docker/cli-plugins/docker-scout.

Now you can analyze a picture with a command like docker scout quickview nginx:newest. The outcomes will let you know what number of vulnerabilities have been found within the picture, and you’ll resolve if you wish to try to mitigate the issues or discover a totally different picture to make use of.

Bear in mind: The safety of your container deployments lives and dies on a basis of safe photographs, so Docker Scout will likely be an important part in your workflow.

Subscribe to TechRepublic’s How To Make Tech Work on YouTube for all the newest tech recommendation for enterprise professionals from Jack Wallen.