Difference between revisions of "Maintain the Images"
From Gcube Wiki
Manuele.simi (Talk | contribs) (→Find, Fix and Monitor for Image Vulnerabilities) |
Manuele.simi (Talk | contribs) (→Find, Fix and Monitor for Image Vulnerabilities) |
||
(One intermediate revision by the same user not shown) | |||
Line 1: | Line 1: | ||
= Find, Fix and Monitor for Image Vulnerabilities = | = Find, Fix and Monitor for Image Vulnerabilities = | ||
− | Docker images must be considered Operating Systems with their packages installed. As such, they are subject to vulnerabilities posing risks that must be discovered and promptly fixed when patches and upgrades are made available. | + | Docker images must be considered (and are) Operating Systems with their packages installed. As such, they are subject to vulnerabilities posing risks that must be discovered and promptly fixed when patches and upgrades are made available. |
− | + | Tools to evaluate: | |
+ | * Snyk: https://snyk.io/ | ||
+ | * Clair: https://github.com/quay/clair | ||
= Scheduled (Monthly) Patching = | = Scheduled (Monthly) Patching = |
Latest revision as of 15:46, 25 August 2020
Find, Fix and Monitor for Image Vulnerabilities
Docker images must be considered (and are) Operating Systems with their packages installed. As such, they are subject to vulnerabilities posing risks that must be discovered and promptly fixed when patches and upgrades are made available.
Tools to evaluate:
- Snyk: https://snyk.io/
- Clair: https://github.com/quay/clair
Scheduled (Monthly) Patching
Back to the Docker guide.