|
|
|
|
|
|
by hundt
1921 days ago
|
|
|
Having implemented it for a job, this has been my impression of container scanning as well. Either your container has an OS, in which case you don't use 99% of the software on it and so 99% of the vulnerabilities found do not affect you, or else you have a container with "scratch" as the base image, in which case the scanner has no insight. |
|
|