docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

added detail on vulnerability severity for security scanning 

Signed-off-by: Victoria Bialas <victoria.bialas@docker.com>
This commit is contained in:
Victoria Bialas 2017-05-01 13:08:31 -07:00
parent 1b190d8f62
commit d9906e3aa6
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docker-cloud/builds/image-scan.md
View File

@ -54,13 +54,16 @@ To view scan results:
3. Click **Tags**. 3. Click **Tags**.
The Tag view displays a summarized view of each tag scan, and the age of the scan. The Tag view displays a summarized view of each tag scan, and the
age of the scan.
![Scanned tags](images/scan-tags.png) ![Scanned tags](images/scan-tags.png)
A solid green bar indicates a clean scan without known vulnerabilities. A solid green bar indicates a clean scan without known vulnerabilities.
Colored stripes in yellow, orange, and red indicate minor, major, and critical Colored stripes in yellow, orange, and red indicate minor, major, and
vulnerabilities respectively. critical vulnerabilities respectively.
>**Tip:** Vulnerability scores are defined by the entity that issues the vulnerability (e.g., [NVD](https://nvd.nist.gov/)), and are based on a [Qualitative Severity Rating Scale](https://www.first.org/cvss/specification-document#5-Qualitative-Severity-Rating-Scale) defined as part of the [Common Vulnerability Scoring System (CVSS) specification](https://www.first.org/cvss/specification-document).
4. Click a scan summary to see more detailed results for the specific tag. 4. Click a scan summary to see more detailed results for the specific tag.