scout-cli
scout-cli copied to clipboard
docker
Docker Scout CLI
I've recently updated my Docker Desktop and it added in Docker Scout, after a few days of normal use. My computer had filled entirely with temporary files in the AppData\Local\Temp...
Hey there 👋 I tried to scan our Docker image [darthsim/imgproxy](https://hub.docker.com/r/darthsim/imgproxy/) and Docker Scout showed me the following: ``` 0C 0H 2M 0L github.com/imgproxy/imgproxy/v3 1.16.1 pkg:golang/github.com/imgproxy/[email protected]#v3 8: sha256:18436b7d64882172a67da66d92933986097b6caf61c5147e55c4347e2904b3c9 /usr/local/bin/imgproxy (evident...
When I run the following command to create a markdown vulnerability report: ``` docker scout cves --locations --format markdown --output report.md ``` The vulnerable artifact locations are not included in...
Since version 1.8 I get "permission denied errors" when I run the Docker scout-cli from a Docker image. I have made several attempts to solve this problem, but without success....
I fully understand that pip has a weird vulnerability cve-2018-20225 but even if you uninstall pip and pip3 docker scout is still showing this vulnerability. My question is does any...
Hi, It would make sense for some of my use cases to be able to ignore some CVEs. For example a vulnerable library may be present in the image but...
Publishing a C# project as "self-contained" adds numerous dependencies in the *.deps.json file with versions that do not always represent the version in use. For example, a C# Asp.Net project...
Hello, when trying to scan with "docker-scout cves fs://. --format markdown" a runtime error happens. Please see the example below. Other formats like "sarif" or "sbom" are working. Would be...
ERROR Status: could not get repositories for org : could not list skills: failed to list integration configurations: 403 403 Forbidden, CodEe: 1
As the owner of its own distro, Chainguard maintains [advisory data](https://github.com/chainguard-dev/vulnerability-scanner-support/blob/main/docs/foundational_concepts.md#chainguard-advisory-data) that captures the results of investigations into potential vulnerabilities. This includes cases where Chainguard determines a vulnerability to be...
