Hi Team,

Anybody using tools or scripts for auto remediating container vulnerabilities?
I am looking at means of apply patches to docker files automatically in response to the results of the scanning by scanning tools.

Gitlab Ultimate has a functionality which tries to do the remediation as above.

But any pointers and direction would be greatly appreciated

Regards,
Raj

Docker Hub uses https://snyk.io/ and this is what you can also install as a docker cli plugin. There are other tools in Docker Desktop like

• Lacework Scaner
• Anchore
• Aqua Trivy
• Jfrog