Join the Conversation!
Subscribing gives you access to the comments so you can share your ideas, ask questions, and connect with others.
Docker Scout
Loading...
Loading...
0 Comments
"Please login to view comments"
Upgrade your account
"Please login to view comments"
Subscribing gives you access to the comments so you can share your ideas, ask questions, and connect with others.
By logging in, you'll unlock full access to this and other free tutorials on JSM Pro.
Why? Logging in lets us personalize your learning experience, track your progress, and keep you in the loop with new workshops, coding tips, and platform updates.
You'll also be the first to know about upcoming launches, events, and exclusive discounts.
No spam—just helpful content to level up your skills.
If that sounds fair, go ahead and log in to continue →
Enter your name and email to get instant access
##Looks like we found a thief monkey By the way, I liked the trick how you reached till here. You have a good sense of humor. You will improve a lot if you join our course with this passion.
var (function-scoped, outdated)let (block-scoped, modern and recommended)const (block-scoped, cannot be reassigned)_, or $let let = 5; is invalid)myVar and myvar are different)string, number, boolean, null, undefined, bigint, symbolObjects, Arrays, Functions
Subscribing gives you access to a brief, insightful summary of each lecture to stay on track.
00:00:00 Now, before we move on to the very interesting part of this course, which is Dockerizing full-stack modern Next.js applications,
00:00:08 let me show you another cool Docker's new and cool feature.
00:00:12 When we create container images for our applications, we're essentially stacking layers of existing images and software components.
00:00:22 However, some of these layers or components might have security vulnerabilities, making our containers and their applications susceptible to attacks.
00:00:32 Docker Scout is a tool that helps us be proactive about security.
00:00:37 It scans our container images, looks at all the layers and software pieces, like building blocks inside them, and creates a detailed list called a Software
00:00:49 Bill of Materials, SBOM for short.
00:00:51 This list includes everything our container is made of.
00:00:54 Then, Docker Scout checks the list against an always updated database of known vulnerabilities.
00:01:01 It's like having a continuously updated list of potential weak points.
00:01:05 If it finds any, it lets us know so we can fix them before deploying our application.
00:01:10 We can use Docker Scout in different places like Docker Desktop, Docker Hub, and even through commands in the Docker command line interface.
00:01:18 If we go back to Docker Desktop, you can see the Docker Scout section right here on the left.
00:01:24 And from the dropdown, we can decide on which image we want to analyze.
00:01:28 Let's select the Myrn Docker web latest.
00:01:31 as we just created it and see what it shows.
00:01:35 Right now, it says zero vulnerabilities and let's view the packages and CVEs.
00:01:40 Here, you can get a complete report analysis of our image.
00:01:44 Luckily, our application doesn't have any vulnerabilities.
00:01:48 It mentions all the things that we need from all the layers and images that are related to it and a list of packages.
00:01:56 It's worth checking every time to ensure that we're not shipping anything that is easy to break.