Security bench #9330
Replies: 5 comments
-
Beta Was this translation helpful? Give feedback.
-
Yeah I know this script, it take about 30 sec on our env (32 services swarm mode) |
Beta Was this translation helpful? Give feedback.
-
A user reported that we could also integrate Clair: https://github.com/coreos/clair (refer #1246) |
Beta Was this translation helpful? Give feedback.
-
Working on clair recently, and I think it can be easily coupled to the upcomming registry management feature |
Beta Was this translation helpful? Give feedback.
-
Adding clair for container image scanning would be great :) If seeing other implementations would be helpful Harbor does this https://github.com/vmware/harbor but I'd prefer to see it in Portainer for my use case (which is doing security reviews of Docker images). there are also some other tools like Anchore that can be used. Sysdig have a good article on this https://sysdig.com/blog/container-security-docker-image-scanning/ |
Beta Was this translation helpful? Give feedback.
-
A script has been created by Docker to check the best-practices/security around deploying containers in production: https://github.com/docker/docker-bench-security
We could integrate that in Portainer and give the user an easy way to bench the security of their host/cluster.
Beta Was this translation helpful? Give feedback.
All reactions