docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
docs/content/guides/docker-scout/_index.md

2.4 KiB
Raw Blame History

title linkTitle summary description tags aliases params
Securing your software supply chain with Docker Scout Docker Scout Enhance container security by automating vulnerability detection and remediation. Learn how to use Docker Scout to enhance container security by automating vulnerability detection and remediation, ensuring compliance, and protecting your development workflow.
product-demo
/learning-paths/docker-scout/
featured image time resource_links
true images/learning-paths/scout.png 20 minutes
title url
Docker Scout overview /scout/
title url
Docker Scout quickstart /scout/quickstart/
title url
Install Docker Scout /scout/install/

When container images are insecure, significant risks can arise. Around 60% of organizations have reported experiencing at least one security breach or vulnerability incident within a year, resulting in operational disruption. These incidents often result in considerable downtime, with 44% of affected companies experiencing over an hour of downtime per event. The financial impact is substantial, with the average data breach cost reaching $4.45 million. This highlights the critical importance of maintaining robust container security measures.

Docker Scout enhances container security by providing automated vulnerability detection and remediation, addressing insecure container images, and ensuring compliance with security standards.

What you'll learn

  • Define Secure Software Supply Chain (SSSC)
  • Review SBOMs and how to use them
  • Detect and monitor vulnerabilities

Tools integration

Works well with Docker Desktop, GitHub Actions, Jenkins, Kubernetes, and other CI solutions.

Whos this for?

  • DevOps engineers who need to integrate automated security checks into CI/CD pipelines to enhance the security and efficiency of their workflows.
  • Developers who want to use Docker Scout to identify and remediate vulnerabilities early in the development process, ensuring the production of secure container images.
  • Security professionals who must enforce security compliance, conduct vulnerability assessments, and ensure the overall security of containerized applications.