You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/organizations/managing-security-and-risk.md
+6Lines changed: 6 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -688,11 +688,13 @@ Container Scanning is a technique to scan your container image's dependencies fo
688
688
The security tool analyzes your upload SBOM (Software Bill of Materials) files to find vulnerabilities in your container images. An SBOM of a container lists all the dependencies included in the image, which in turn allows the scanner to search for known vulnerabilities (CVEs).
689
689
690
690
#### High-level flow
691
+
691
692
1. Image SBOMs are received either via CI/CD integration or manual upload
692
693
2. The image dependencies are scanned against Trivy's vulnerability databases
693
694
3. Results appear in the UI after processing
694
695
695
696
#### Scan Frequency
697
+
696
698
1. Proactive scans run automatically once per day
697
699
2. Scans are executed every night (UTC) and the findings are updated automatically
698
700
@@ -724,6 +726,7 @@ You can also manually upload your container's Software Bill of Materials (SBOM)
724
726
725
727
726
728
In order to do manually upload an image, you need to:
729
+
727
730
1. Add the image name;
728
731
2. Add the image tag;
729
732
3. Upload your container image file(environment and repository fields are optional).
@@ -739,6 +742,7 @@ The Image card list provides an overview of all container images and their last
739
742
740
743
741
744
For each image, you can see:
745
+
742
746
- Image name
743
747
- The most recent tag pushed for this image
744
748
- Options and entry point to check all image tags.
@@ -748,6 +752,7 @@ By clicking the card for a specific image, you will see a list of all tags for t
748
752
749
753
750
754
For the image tags, the list is sorted by latest uploaded, and the information includes:
755
+
751
756
- Tag used
752
757
- Environment (optional field)
753
758
- Last analysis: Date of the last scan for that tag
@@ -764,6 +769,7 @@ Once a tag is scanned, you can click on the `check findings` link to access the
764
769
765
770
766
771
What happens when you delete an image:
772
+
767
773
- The image is permanently removed
768
774
- All associated image tags are deleted
769
775
- Scan history and results for that image are removed
0 commit comments