Enable Vulnerability Scanning

Software development is constantly evolving, and security is a top priority. The Vulnerability Scanning feature is specifically designed to enhance the security of your containerized applications by proactively identifying potential vulnerabilities present in your artifacts. Scans take place every time an artifact is pushed to the registry and when new vulnerability definitions are published. This allows for quick detection of any security weaknesses in container dependencies and libraries, allowing you to react immediately to prevent exploitation.

Adopting the scanning feature is not just about maintaining security; it is also essential for complying with industry regulations, managing risks effectively, and sustaining the trust of your users. You can integrate the feature into your CI/CD pipeline, providing continuous security assessments to keep your containers safe in a fast-paced development environment.

We prioritize detected vulnerabilities based on severity, enabling you to focus on the most critical issues. Our recommendations for patch management, minimizing the attack surface, and using trusted base artifacts form part of a comprehensive security posture. By adopting the Vulnerability Scanning feature, you are taking a proactive approach to enable your team to safeguard your applications against emerging threats, ensuring the integrity of your software delivery.

For more information, see View Vulnerability Scan Results.

Add Vulnerability Scanning to an Existing Container Registry

1. To add Vulnerability Scanning to a Container Registry, go to Menu > Containers > Container Registry.

2. In the Container Registry Manager, select the Container Registry you want to enable Vulnerability Scanning for.

3. Navigate to the Properties section and click on Enable in the Vulnerability Scanning area.

4. Confirm the action to enable Vulnerability Scanning.