Updated on 2024-04-15 GMT+08:00

Local Images

You can manually scan local images for vulnerabilities and software information and provides scan reports. This section describes how to perform security scans on local images and view scan reports.

Constraints

  • Only the HSS container edition supports this function.
  • Only the local images of the Docker engine can be reported to the HSS console.
  • Security scans can be performed only on Linux images.

Viewing Local Images

  1. Log in to the management console.
  2. In the upper left corner of the page, click , select a region, and choose Security > Host Security Service.
  3. In the navigation pane, choose Asset Management > Containers & Quota.
  4. Click the Container Images tab and click Local image.

    You can view the name, version, type, and security risks of an image.

    • Viewing information about servers associated with an image

      Locate the row that contains the target image and click the number in the Associated Servers column. The Associated Servers page is displayed. You can view details about the servers associated with the image.

    • Viewing information about containers associated with an image

      Locate the row that contains the target image and click the number in the Associated Containers column. The Associated Containers page is displayed. You can view details about the containers associated with the image.

    • Viewing information about image components

      Locate the row that contains the target image and click the number in the Components column. The Components page is displayed. You can view details about image components.

Local Image Security Scans

The security scan items are as follows:

Scan Item

Description

Vulnerability

Detects vulnerabilities in images.

Installed software

Collects software information in an image.

  1. Log in to the HSS management console.
  2. In the navigation pane, choose Asset Management > Containers & Quota.
  3. Click the Container Images tab and click Local image.
  4. Performs a security scan for a single image or multiple images.

    • Single image security scan

      In the Operation column of the target image, click Scan to perform security scan.

    • Batch image security scan

      Select all target images and click Scan above the image list to perform security scan for multiple target images.

    • Full image security scan

      Click Scan All above the image list to perform a security scan for all images.

  5. The image security scan is complete, when the Scan Status changes to Completed and the Latest Scan Completed shows the latest task execution time.

Viewing Local Image Vulnerability Reports and Software Information

  1. Log in to the HSS management console.
  2. In the navigation pane on the left, choose Asset Management > Containers & Quota. Click the Container Images tab and click Local image to view the image scan result.

Exporting Local Image Vulnerability Reports

  1. Log in to the HSS management console.
  1. In the navigation pane, choose Asset Management > Containers & Quota.
  2. Click the Container Images tab and click Local image.
  3. Click Export Vulnerability above the image list.

    If you want to export the vulnerability report of a specified image, select the image type in the search box and click Export Vulnerability.