Dockerfile scanning #298
Labels
feature request
New feature or request
Comments
|
@jghal, thanks for using the JFrog VS-Code extension. Read more about it here - Please let me know what you think. |
|
We don't use Docker Desktop in my organization after the license changes made it non-free. Even if we were licensing Docker Desktop I would still want this feature, so that all the dependency vulnerabilities for my project are displayed and actionable in a single UI. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
I have projects with a Dockerfile used to package the software, but the IDE plugin only gives my vulnerabilities from the software dependencies.
Describe the solution you'd like to see
If a folder loaded in the workspace have a Dockerfile (or multiple, perhaps glob on
Dockerfile.*) then the Dockerfile(s) should be scanned forFROMlines and those images should be scanned the same as if I use thejf docker scancommand individually on each of them.Describe alternatives you've considered
Manually running
jf docker scanon each 3rd party image my Dockerfile depends on.Additional context
Project directory has a Dockerfile
Add it to the JFrog Issues view with all the
FROMimages scannedThe text was updated successfully, but these errors were encountered: