docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #17479 from docker/chrisward/scout-data-flow 

Add Docker Scout data flow details
This commit is contained in:
Chris Chinchilla 2023-06-13 10:44:38 +02:00 committed by GitHub
parent 5c0ba83703 54f8682327
commit eb8edf014b
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
scout/image-details-view.md
View File

@ -18,6 +18,10 @@ or for a specific base image or layer.
![The image details view in Docker Desktop](./images/dd-image-view.png){:width="700px"}
Docker Desktop first analyzes images locally, where it generates a software bill of materials (SBOM).
Docker Desktop, Docker Hub, and the Docker Scout Dashboard and CLI all use the [package URL (PURL) links](https://github.com/package-url/purl-spec){: target="_blank" rel="noopener" }
in this SBOM to query for matching Common Vulnerabilities and Exposures (CVEs) in [Docker Scout's advisory database](./advisory-db-sources.md).
## Image hierarchy
The image you inspect may have one or more base images represented under **Image hierarchy**.