Scanning container images in CI/CD
Container images bundle OS packages and app dependencies—each layer can carry CVEs. Scanners (Trivy, Grype, legacy Clair) compare installed packages against vulnerability DBs and report severity (Critical → Low). Run scans on every build and gate promotion: fail the pipeline or require waiver with ticket.
Content is available with subscription.
Get full access to all courses on the platform for one year with a single payment.
▼
Unlike other platforms that charge per course, here you get everything for one price, and after one year of use there will be no automatic charge for the following year.