Getting Started: Scan a Container Image with Docker
Use the RapidFort Command Line Interface (CLI) tools to scan a container image with Docker
Before getting started, install the RapidFort CLI tools on your client system.
In this tutorial, we will scan the NGINX Docker image for packages and vulnerabilities.
First, run rflogin to log into RapidFort. Enter your password if prompted.
rflogin <your-email-address>
Run rfscan to scan the latest NGINX Docker image.
rfscan docker.io/nginx:latest
rfscan will automatically try to pull an image if it is not available locally. Please note that some registries require authentication. To learn more about how to configure rfscan to authenticate with registries, please view Registry Configuration.
By default, scan reports are saved to
~/rapidfort/reports/<timestamp>
.You can view packages, vulnerabilities, hardening estimates, and more information on the RapidFort Dashboard.
For more information on the RapidFort scanner, including container registry scanning, please refer to the following page: