1
0
Fork 0
mirror of https://github.com/imjasonh/gcloud-help synced 2026-07-08 18:45:13 +00:00
gcloud-help/gcloud/artifacts/docker/images/scan
2022-03-01 04:29:52 +00:00

93 lines
3.1 KiB
Text

NAME
gcloud artifacts docker images scan - perform a vulnerability scan on a
container image
SYNOPSIS
gcloud artifacts docker images scan RESOURCE_URI
[--additional-package-types=[ADDITIONAL_PACKAGE_TYPES,...]] [--async]
[--location=LOCATION; default="us"] [--remote] [GCLOUD_WIDE_FLAG ...]
DESCRIPTION
You can scan a container image in a Google Cloud registry (Artifact
Registry or Container Registry), or a local container image.
Reference an image by tag or digest using any of the formats:
Artifact Registry:
LOCATION-docker.pkg.dev/PROJECT-ID/REPOSITORY-ID/IMAGE[:tag]
LOCATION-docker.pkg.dev/PROJECT-ID/REPOSITORY-ID/IMAGE@sha256:digest
Container Registry:
[LOCATION.]gcr.io/PROJECT-ID/REPOSITORY-ID/IMAGE[:tag]
[LOCATION.]gcr.io/PROJECT-ID/REPOSITORY-ID/IMAGE@sha256:digest
Local:
IMAGE[:tag]
EXAMPLES
Start a scan of a container image stored in Artifact Registry:
$ gcloud artifacts docker images scan \
us-west1-docker.pkg.dev/my-project/my-repository/\
busy-box@sha256:abcxyz --remote
Start a scan of a container image stored in the Container Registry, and
perform the analysis in Europe:
$ gcloud artifacts docker images scan \
eu.gcr.io/my-project/my-repository/my-image:latest --remote \
--location=europe
Start a scan of a container image stored locally, and perform the analysis
in Asia:
$ gcloud artifacts docker images scan ubuntu:latest --location=asia
POSITIONAL ARGUMENTS
RESOURCE_URI
A container image in a Google Cloud registry (Artifact Registry or
Container Registry), or a local container image.
FLAGS
--additional-package-types=[ADDITIONAL_PACKAGE_TYPES,...]
A comma-separated list of package types to scan in addition to OS
packages. ADDITIONAL_PACKAGE_TYPES must be one of:
GO
Go standard library and third party packages.
MAVEN
Maven package.
--async
Return immediately, without waiting for the operation in progress to
complete.
--location=LOCATION; default="us"
The API location in which to perform package analysis. Consider
choosing a location closest to where you are located. Proximity to the
container image does not affect response time. LOCATION must be one of:
asia
Perform analysis in Asia
europe
Perform analysis in Europe
us
Perform analysis in the US
--remote
Whether the container image is located remotely or on your local
machine.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account,
--billing-project, --configuration, --flags-file, --flatten, --format,
--help, --impersonate-service-account, --log-http, --project, --quiet,
--trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
NOTES
This variant is also available:
$ gcloud beta artifacts docker images scan