A simple toolset to check local Docker images for CVE's (eg cve-2015-7547) and other common issues.
This just pulls the images to be checked and then runs a series of check scripts against each image with a pass/fail result.
- Create
images.conf
containing the Docker images you wish to check (one per line). - Run
pull-images.sh
- Run
check-images.sh
- Review the output.
Currently this is very simple and just checks for CVE-2015-7547, but if it is generally useful we will expand it as a more general tool.