scout-cli icon indicating copy to clipboard operation
scout-cli copied to clipboard

Published 20 hours ago verified publisher icon docker

Obey .dockerignore

Open aep-sunlife opened this issue 1 month ago • 0 comments
trafficstars

Docker Scout with fs://. should obey .dockerignore patterns when considering which SBOM directories and file paths to scan, and which to skip.

There should also be a command line flag like --exclude <pattern> [--exclude <pattern> [--exclude <pattern> ...]]] to supplement .dockerignore with additional patterns.

It's technically possible to workaround these gaps by through git and cp tricks, but A) computers exist to automate and B) many users are likely to fumble the manual steps involved. Please just do this as a built-in.

Most security and automation tools provide mechanisms to ignore file patterns.

aep-sunlife avatar Oct 10 '25 15:10 aep-sunlife