You're reading from Mastering Docker, Fourth Edition Enhance your containerization and DevOps skills to deliver production-ready applications

Product type Paperback

Published in Oct 2020

Publisher Packt

ISBN-13 9781839216572

Length 568 pages

Edition 4th Edition

Tools

Docker

Concepts

Containerization

Author (1):

Russ McKendrick

View More author details

Table of Contents (22) Chapters

Preface

1. Section 1: Getting Up and Running with Docker

2. Chapter 1: Docker Overview FREE CHAPTER

3. Chapter 2: Building Container Images

4. Chapter 3: Storing and Distributing Images

5. Chapter 4: Managing Containers

6. Chapter 5: Docker Compose

7. Chapter 6: Docker Machine, Vagrant, and Multipass

8. Section 2: Clusters and Clouds

9. Chapter 7: Moving from Linux to Windows Containers

10. Chapter 8: Clustering with Docker Swarm

11. Chapter 9: Portainer – A GUI for Docker

12. Chapter 10: Running Docker in Public Clouds

13. Chapter 11: Docker and Kubernetes

14. Chapter 12: Discovering other Kubernetes options

15. Chapter 13: Running Kubernetes in Public Clouds

16. Section 3: Best Practices

17. Chapter 14: Docker Security

18. Chapter 15: Docker Workflows

19. Chapter 16: Next Steps with Docker

20. Assessments

21. Other Books You May Enjoy

Leave a review - let other readers know what you think

Third-party security services

Before we finish this chapter, we are going to take a look at some of the third-party services available to help you with the vulnerability assessment of your images.

Quay

Quay, an image registry by Red Hat, is similar to Docker Hub/Registry; one difference is that Quay actually performs a security scan of each image after it is pushed/built.

You can see the results of the scan by viewing the Repository Tags for your chosen image. Here you will see a column for Security Scan. As you can see in the following screenshot, in the example image that we created, there are no problems:

Figure 14.2 – A passed security scan on Quay

Clicking on Passed will take you to a more detailed breakdown of any vulnerabilities that have been detected within the image. As there are no vulnerabilities at the moment (which is a good thing), this screen does not tell us much. However, clicking on the Packages icon in the left-hand menu...