scout-cli
scout-cli copied to clipboard
docker
Docker Scout CLI
"docker scout repo enable --all" fails with ERROR Status: failed to parse repository name , Code: 1
According to the docs here: https://docs.docker.com/reference/cli/docker/scout/repo/enable/#enable-all-repositories-of-the-organization I should be able to use: `docker scout repo enable --all` But this fails with: `ERROR Status: failed to parse repository name , Code:...
I built ArgoCD from source: ``` mkdir argocd_build && \ cd argocd_build && \ mkdir gocache && \ mkdir gopath && \ export GOCACHE="$(realpath gocache)" && \ export GOPATH="$(realpath gopath)"...
**Issue Description:** Currently, the Docker Scout CLI repository provides an automated Bash installation script (`install.sh`) for Linux and macOS users, but Windows users must either rely on Docker Desktop or...
Generate a SBOM like this: `docker scout sbom tykio/tyk-gateway:v5.7.3 --format cyclonedx` The generated document fails by ``` "$.components[48].licenses: must be valid to one and only one schema, but 0 are...
Per the [VEX spec](https://github.com/openvex/spec/blob/main/OPENVEX-SPEC.md#updating-statements-with-inherited-data) you are supposed to be able to have multiple statements for the same package within a VEX document. This allows you to keep a record of...
I would like to report an issue where [CVE-2025-26042](https://scout.docker.com/vulnerabilities/id/CVE-2025-26042) is still marked as open/vulnerable on Docker Scout, even though this CVE has already been fixed. ### Background There were previously...
`docker scout cves -e fs://`... often reports "No vulnerabilities" on Windows hosts, where macOS hosts do show findings, for the very same local file tree. This happens when scanning the...
Docker Scout often presents more, or fewer CVE's compared with other SCA tools. For example, Docker Scout and Snyk Container tend to disagree on which CVE's apply to various images....
It's hard to resolve security findings absent the *file path* of the offending resource.