Table of Contents
...
There are two ways that you can scan container images in ECR:
- Using Synopsys Detect on a local workstation
- Using an Azure DevOps Pipeline
...
Authenticate with ACR. The az acr login command generates an authentication token and authenticates with your registry.
Code Block theme RDark title Generate Docker Login for ECR (Linux) az acr login --name <acrName>
Invoke Synopsys Detect, and provide the following /wiki/spaces/INTDOCS/pages/622673 at following at a minimum.
Code Block theme RDark title Synopsys Detect - Scanning Images bash <(curl -s https://detect.synopsys.com/detect.sh) \ --blackduck.url=<URL> \ --blackduck.api.token=<token> \ --detect.docker.image=<Image URI> \ --detect.project.name=<Project Name>
Anchor | ||||
---|---|---|---|---|
|
...
Talk to your authorized support representative for details on the Synopsys Detect extension.
See also: Azure DevOps (ADO) Plugin
Invoking Synopsys Detect as a script to scan a Docker image stored in ACR
...
For more information about using Black Duck, evaluating scan results, and more, refer to the topic Getting Started with Black Duck located here: Black Duck