MicroScanner: Free Image Vulnerability Scanner for Developers
A free-to-use tool for scanning your container images for package vulnerabilities. MicroScanner uses the same vulnerability database as Aqua’s best-in-class commercial scanner, so you’re getting top-notch results.
The main difference between MicroScanner and our commercial offering is that it runs during the build steps specified within your Dockerfile, like so:
ADD https://get.aquasec.com/microscanner /
RUN chmod +x microscanner
RUN microscanner <TOKEN>
These three commands download the MicroScanner binary, give it permission to be executed, and run it over the contents of the container image file system at that stage. (You’ll need a token which you get by registering.)
If MicroScanner finds a high-severity vulnerability, it returns a non-zero exit code (as well as reporting the details in JSON format), and that in turn fails the image build. There’s a –continue-on-failure flag in case you want to press on regardless of vulnerabilities.
|Categories||Cloud and Virtualization > Containers|
Use of the SDxCentral service directory is governed by our Terms of Service, including without limitation those sections under the headings "CONTENT", "LICENSING AND OTHER TERMS APPLYING TO CONTENT POSTED ON THE SDXCENTRAL SITES", "INDEMNITY; DISCLAIMER; LIMITATION OF LIABILITY" AND "COPYRIGHTS". Under no circumstances will SDxCentral be liable in any way for any Content, including, but not limited to, liability for any errors or omissions in any Content or for any loss or damage of any kind incurred as a result of the use of any Content posted, emailed or otherwise transmitted via the Sites.