Invoking Docker Inspector

Owned by Ray O'Meara (Unlicensed)
Last updated: Apr 07, 2023 by Chris Potts

Invoke Docker Inspector directly or from Synopsys Detect.

Invoking Docker Inspector through Synopsys Detect

For many users, the preferred and easiest option is to invoke Black Duck Docker Inspector from Synopsys Detect. Synopsys Detect provides the following benefits:

  1. It automatically downloads (if necessary) the latest version of Black Duck Docker Inspector. This is the only way to get this capability on Windows.

  2. It discovers components that Black Duck Docker Inspector is unable to discover by also invoking the Black Duck Signature Scanner on the target image container file system.

Refer to the Synopsys Detect documentation for more information.


Invoking Docker Inspector directly

The preferred way to invoke Black Duck Docker Inspector is through Synopsys Detect, but you can also invoke the Inspector directly through the command line.

The following three options enable you to invoke Black Duck Docker Inspector directly.

Option one:
Fetch and run the latest version of Black Duck Docker Inspector

bash <(curl -s https://blackducksoftware.github.io/blackduck-docker-inspector/blackduck-docker-inspector.sh) {Black Duck Docker Inspector arguments}

 Examples

bash <(curl -s https://blackducksoftware.github.io/blackduck-docker-inspector/blackduck-docker-inspector.sh) --help bash <(curl -s https://blackducksoftware.github.io/blackduck-docker-inspector/blackduck-docker-inspector.sh) --upload.bdio=false --docker.image=ubuntu

Option two:
Download and run the latest Black Duck Docker Inspector script

curl -O https://blackducksoftware.github.io/blackduck-docker-inspector/blackduck-docker-inspector.sh chmod +x blackduck-docker-inspector.sh ./blackduck-docker-inspector.sh {Black Duck Docker Inspector arguments}

The advantage of using the Black Duck Docker Inspector script is that it ensures you always run the latest version of the Black Duck Docker Inspector .jar.

Option three:
Download the Black Duck Docker Inspector .jar (using the script) and run the .jar directly

 

Black Duck Docker Inspector arguments

Black Duck Docker Inspector command line arguments consist of property assignments to which you assign a value, which is like a flag or a parameter on the command line or in a script that provides instructions for the Docker Inspector task. When setting a property value, the property name is prefixed with two hyphens
(--), for example, --blackduck.url=http://blackduck.mydomain.com:8080

Properties are passed in using the command line by prepending the property name with -- and appending = followed by the value.

 

©2023 Synopsys, Inc. All Rights Reserved