Scan container images

Snyk Container helps you find and fix vulnerabilities in container images, based on container registry scans.

You can scan your container images using Snyk Container:

In the Snyk Web UI
Through the Snyk CLI
With Broker (for self-hosted container registries)

Prerequisites for using Snyk Container in the Web UI

Before scanning your container images with Snyk Container, ensure you:

Create or log in to a Snyk account.
Set up an integration with a supported container registry, such as Docker Hub. See Container security integrations.

For more information, see Getting started.

View vulnerabilities in your container images

In the Projects tab, you can see vulnerability results for Snyk Projects that you have imported. The imported Projects are grouped into Targets.

You can see the history of all the repositories and container registry images imported into an Organization. For details, see Import Log.

To see vulnerability information for that Project, select an imported Project from the target list.

Click on a Project entry to see details of the vulnerabilities found, including where it was introduced, how to fix it, and other details about the vulnerability.

Fix vulnerabilities in your container images

To fix vulnerabilities in your container images:

Open a PR based on Snyk recommendation by clicking Open a fix PR.
Upgrade or rebuild your image.

After the updated image is pushed, Snyk automatically rescans your new image.

For more details on fixing vulnerabilities, see Analysis and fixes for your images from the Snyk Web UI.

PreviousKubernetes and the Snyk Priority Score NextUse Snyk Container

Last updated 7 months ago

Was this helpful?