解决Use ‘docker scan‘ to run Snyk tests against images to find vulnerabilities

解决Use 'docker scan' to run Snyk tests against images to find vulnerabilities and learn how to fix them

gusijin

7784人浏览 · 2022-09-04 16:26:07

gusijin · 2022-09-04 16:26:07 发布

问题

运行docker build -f Dockerfile -t quickstart:v1.0 . 的时候提示
：Use ‘docker scan’ to run Snyk tests against images to find vulnerabilities and learn how to fix them

[+] Building 9.6s (11/11) FINISHED                                                        
 => [internal] load build definition from Dockerfile                                 0.0s
 => => transferring dockerfile: 654B                                                 0.0s
 => [internal] load .dockerignore                                                    0.0s
 => => transferring context: 2B                                                      0.0s
 => [internal] load metadata for docker.io/library/alpine:latest                     6.8s
 => [internal] load build context                                                    0.3s
 => => transferring context: 18.07MB                                                 0.3s
 => [1/6] FROM docker.io/library/alpine:latest@sha256:bc41182d7ef5ffc53a40b044e7251  2.4s
 => => resolve docker.io/library/alpine:latest@sha256:bc41182d7ef5ffc53a40b044e7251  0.0s
 => => sha256:bc41182d7ef5ffc53a40b044e725193bc10142a1243f395ee852a 1.64kB / 1.64kB  0.0s
 => => sha256:ed73e2bee79b3428995b16fce4221fc715a849152f364929cdccdc83d 528B / 528B  0.0s
 => => sha256:a6215f271958c760a2975a6765016044115dbae4b90f414eba3a4 1.49kB / 1.49kB  0.0s
 => => sha256:9b18e9b68314027565b90ff6189d65942c0f7986da80df008b843 2.71MB / 2.71MB  2.2s
 => => extracting sha256:9b18e9b68314027565b90ff6189d65942c0f7986da80df008b84312768  0.1s
 => [2/6] WORKDIR /apps                                                              0.0s
 => [3/6] COPY quickstart /apps/quickstart                                           0.0s
 => [4/6] COPY conf/app.conf /apps/conf/app.conf                                     0.0s
 => [5/6] RUN ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime                0.1s
 => [6/6] RUN echo 'Asia/Shanghai' >/etc/timezone                                    0.1s
 => exporting to image                                                               0.1s
 => => exporting layers                                                              0.1s
 => => writing image sha256:c8ea5e427f7f3e8cbf1185132e0f781d4d4a99478975e96a0f7a9c1  0.0s
 => => naming to docker.io/library/quickstart:v1.0                                   0.0s

Use 'docker scan' to run Snyk tests against images to find vulnerabilities and learn how to fix them

解决方法

将DOCKER扫描建议设置为false即可

export DOCKER_SCAN_SUGGEST=false

腾讯云开发者社区

腾讯云面向开发者汇聚海量精品云计算使用和开发经验，营造开放的云计算技术生态圈。

更多推荐

Js分割字符串(单个分割符、多个分割符、正则)

1.单个分割符1.1定义和用法split() 方法用于把一个字符串分割成字符串数组。1.2语法stringObject.split(separator,howmany)参数描述separator必需。字符串或正则表达式，从该参数指定的地方分割 stringObject。howmany可选。该参数可指定返回的数组的最大长度。如果设置了该参数，返回的子串不会多于这个参数指定的数组。如果没有设置该参数，

腾讯云开发者社区

curl

什么是curl命令？curl是利用URL语法在命令行方式下工作的开源文件传输工具。它被广泛应用在Unix、多种Linux发行版中，并且有DOS和Win32、Win64下的移植版本。如何在windows下使用curl命令？第一步：进入curl下载官网，下载合适的版本，我这里下载的是windows 64位的curl。其中我下载的zip文件。另外CAB文件也是压缩文件，这...

腾讯云开发者社区

Zynq7000 USB2.0协议解析及USB控制器详解

USB 2.0规范及控制器文章目录USB 2.0规范及控制器USB2.0Univerasl Serial BusUSBHostUSB总线接口标准总线信号USB拓扑结构数据流模型数据编解码和位填充USB逻辑部件USB时间基准USB 描述符USB设备USB设备供电方式USB设备分层USB设备插入检测机制USB设备状态USB总线枚举USB传输传输类型包(Packet)事务(transaction)传输(