Shifting Security Left by scanning your container images
It’s been quite some time since I wrote a how-to article. A lot has changed since then with me personally but let’s get right into it.
Anchore Engine is an open-source tool that scans your container images to see if there are any open vulnerabilities.
For example, if your base image is
node:alpine how do you know if that image is safe to use? Anchore will scan your built image and let you know if there are vulnerabilities that you…