Identify vulnerabilities in your container images with Snyk’s enhanced Docker Desktop Extension
11 de abril de 2023
0 minutos de leituraThe Docker developer ecosystem is continuously growing, and container security is becoming even more important as the Docker developer ecosystem evolves. The developer-friendly Snyk security integration with Docker is invaluable in today’s landscape. Snyk has made significant updates to the Docker Desktop Extension and continues to evolve the extension to ensure the applications and images pushed to the container registry don't have critical vulnerabilities.
Snyk’s updates to the Docker Desktop Extension ensure continued compatibility with the newest release of Docker Desktop. The Snyk Docker Desktop Extension enables you to scan your remote or local container images and identify vulnerabilities in them. The extension:
Provides base image recommendation, allowing you to start from a more secure image, wherever your images are hosted
Helps developers focus on the vulnerabilities posing the highest risk
Works with workflows for curating and managing “approved” base images with Snyk Container
New features in Snyk Container
As of April 2023, we’re pleased to announce that Snyk Container offers several new features to support a wider variety of container workflows. This feature supports a range of different enterprise container workflows, such as:
A single team to curate and use base images
A subset of the security team that curates golden base images
Separate base image and security teams
The goal is to free developers from worrying about base image vulnerabilities that are out of their control. To learn more about container security, check out this Getting Started guide. See the Snyk platform first-hand, in this on-demand democast Snyk in 30: Full Platform, where we demonstrate how Snyk’s cloud native application security platform works like a developer tool, all while enabling one continuous feedback loop between developer and security teams.
The full Snyk platform helps secure your applications and containers, across the SDLC, right in your IDE, source code repositories, and container registries. If you would like to go beyond Docker Desktop and integrate Snyk with Docker Hub too, we encourage you to sign up for your free Snyk account.
Developer-first container security
Snyk finds and automatically fixes vulnerabilities in container images and Kubernetes workloads.