I have been reading about Docker container scanning tools viz. Clair by CoreOs and Anchore. Both of them deal with static analysis of the container image to create a report of CVEs. What are some vulnerabilities that might not be covered in the static analysis of just the images? Are there tools which scan running containers and generate a CVE report for the same ?
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Vulnerability scanning question | 1 | 381 | November 14, 2019 | |
| Security scanning of containers? | 1 | 2892 | June 1, 2017 | |
| Docker image vulnearabilty scanner | 0 | 410 | March 17, 2021 | |
| Official containers and security CVE issues | 0 | 828 | July 4, 2017 | |
| Docker Hub Security Scanning | 0 | 575 | March 6, 2019 |