scout-cli icon indicating copy to clipboard operation
scout-cli copied to clipboard

Published 20 hours ago verified publisher icon docker

conflicting security reports with other SCA tools

Open aep-sunlife opened this issue 4 months ago • 0 comments

Docker Scout often presents more, or fewer CVE's compared with other SCA tools. For example, Docker Scout and Snyk Container tend to disagree on which CVE's apply to various images. Sometimes Docker Scout shows more CVE's. Sometimes Snyk Container shows more CVE's.

Can we please improve the CVE data for Docker Scout so that it behaves as a superset of the Snyk Database?

https://snyk.io/

https://security.snyk.io/

aep-sunlife avatar Jul 11 '25 16:07 aep-sunlife