Skip to main content
Skip table of contents

UA - Docker Hub Integration

Overview

Mend seamlessly integrates with DockerHub’s private registries to scan docker images, automatically detects issues in open source components, and provides you with all of the information you need about the open source libraries and their licensing information, as well as any known security vulnerabilities.

You can set up your own policies so that they trigger workflows based on detected risks. For example, if a security vulnerability or licensing incompatibility issue arises, an alert is automatically sent in real time, so that you can address issues as soon as they arise.

Please note that using the Unified Agent to pull images from Docker Hub is only supported for private repositories.

Getting it done

Parameters

  • docker.hub.enabled - Default to false 

  • docker.hub.userName

  • docker.hub.userPassword

  • docker.hub.organizationsNames - List of organizations under the user to be scanned

  • docker.pull.images - List of regex with which to filter the tags

Example

CODE 
# Docker images
################
docker.scanImages=true
docker.pull.enable=true
docker.pull.images=.*alpine-license.*
docker.pull.maxImages=1
docker.pull.tags=4

docker.hub.enabled=true
docker.hub.userName=
docker.hub.userPassword=
docker.hub.organizationsNames=

Public Images

For scanning public images, pull the images using the "docker pull" command. Then, scan them without using the Docker Hub flags.


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close