Late docker scan

mcandre · April 7, 2022, 8:18pm

docker scan appears to fail for local images. This significantly hinders its usefulness as a security tool; It can’t be used to scan an image before publishing the image to a registry. The -f option doesn’t appear to help. docker scan continues to emit generic error messages about missing manifests.

As a workaround, one could publish draft image hashes to a registry. But that’s rather slow and wasteful. Please fix Snyk integration so that images can be scanned from the local registry (better yet, buildx caches, too!) for a more intuitive workflow. The easier it becomes to scan our images, the more secure our images will be.

Topic		Replies	Views
Launching Snyk vulnerability scanning Docker Hub dockerhub , dockersecurityscan	0	564	April 16, 2021
"Official Image Vulnerability Scanning" is missing in action? Docker Hub dockerhub , dockersecurityscan	7	1193	October 22, 2020
Community Snyk support? General security	0	566	April 2, 2022
Does docker vulnerability scan code artifact or dependencies? General dockerhub , build	1	595	November 17, 2021
How to run docker scan without contacting docker.io General dockersecurityscan	0	420	December 27, 2022

Late docker scan

Related topics