CIS Docker Check Issue #4312
haoyu1101
started this conversation in
False Detection
CIS Docker Check Issue
#4312
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Question
Hi Community,
I did the CIS docker check with the following command:
trivy image --compliance docker-cis <image name>And this is the scan result:
However, I also executed the scan with --scanner parameter for configuration and secrets check with this command:
trivy image --scanners vuln,config,secret,license --severity unknown,low,medium,high,critical <image name>The result didn't show any misconfiguration issues. I believe CIS docker is checking the misconfiguration parameter. Therefore, would like to confirm which scan result we should reference?
Thanks!
Target
Container Image
Scanner
Misconfiguration
Output Format
Table
Mode
None
Operating System
Ubuntu
Version
Beta Was this translation helpful? Give feedback.
All reactions