Docker-scout MALWARE

bruverton · January 30, 2024, 11:07am

Hi everyone, the anti virus software has quarantined docker-scout (osx/merlin.ext) in the cli-plugins directory. 1) I ask the forum is anyone undersrtands if the malware is malicious? 2) if I delete docker-scout will docker still operate ok? Any pointers would be very much appreciated!

bluepuma77 · January 30, 2024, 8:41pm

Docker Scout analyzes your images to help you understand their dependencies and potential vulnerabilities.

Maybe there is some code it uses to compare to vulnerabilities, therefore the antivirus thinks it’s bad?

Docker Scout is an official product from Docker (link), so malware risk is probably low.

https://www.virustotal.com/ is for example a site you can use to check files, try to upload it there.

rimelek · January 30, 2024, 10:44pm

If it is really an unmodified Docker Scout you should’t worry about that, but if you don’t need docker scout, you can delete the cli plugin.

You could also report the issue here:

Topic		Replies	Views
Announcing Docker Scout - A Software Supply Chain Security for Developers Announcements docker	0	1248	February 28, 2023
Is there a way to download vulnerability scan (Scout) and scan results for reporting? Docker Hub dockerhub	0	254	October 18, 2023
Clarification on functionality Docker Scout	8	67	October 28, 2024
Malware in Docker Desktop Mac Version Docker Hub docker	1	1088	November 4, 2019
Docker Scout Cheatsheet is available Announcements	0	637	November 22, 2023

Docker-scout MALWARE

Related topics