I have been reading about Docker container scanning tools viz. Clair by CoreOs and Anchore. Both of them deal with static analysis of the container image to create a report of CVEs. What are some vulnerabilities that might not be covered in the static analysis of just the images? Are there tools which scan running containers and generate a CVE report for the same ?
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Vulnerability scanning question | 1 | 378 | November 14, 2019 | |
| Security scanning of containers? | 1 | 2884 | June 1, 2017 | |
| Docker image vulnearabilty scanner | 0 | 408 | March 17, 2021 | |
| Official containers and security CVE issues | 0 | 825 | July 4, 2017 | |
| Docker Hub Security Scanning | 0 | 570 | March 6, 2019 |