Docker is introducing a new way for developers and organizations to access its suite of products – including Docker Desktop, Docker Hub, Docker Trusted Content, Docker Scout, Docker Build Cloud, and Testcontainers Cloud.
Docker and Snyk Partner on Container Vulnerability Scanning
May 19, 2020
Docker has partnered with Snyk to deliver the first, native vulnerability scanning of container images in Docker.
Together, Docker and Snyk will provide a streamlined workflow that makes the application development process more secure for millions of developers, allowing them to more quickly and confidently build secure applications as an automated part of their toolchain.
Traditionally, if and when a developer working with Docker discovered vulnerabilities, they had to add several separate steps to their workflow to scan container images, identify a fix and remediate effectively. Snyk’s developer-first approach to security empowers developers with visibility to automatically find vulnerabilities in open source libraries and container images.
With the addition of Snyk’s container image scanning and vulnerability database natively integrated into Docker, developers will have continuous security insight embedded into their inner-loop development process. This integrated approach gives developers an easy and efficient way to build and secure containers in an agile and productive application development workflow.
“The addition of scanning images in Docker through the new integration with Snyk means that developers are more easily able to find and fix vulnerabilities throughout the development process,” said Justin Graham, VP of Products, Docker. “We are giving developers and development teams the peace of mind that container images stored in their Docker Hub repositories are scanned, and vulnerabilities identified and communicated to them, while eliminating extra steps in their application development workflow.”
"We are excited to partner with Docker to provide a streamlined workflow that brings automation and efficiency to building secure cloud-native applications for millions of developers," said Aner Mazur, CPO, Snyk. "This partnership is making security a top priority in the container application development process and setting a new standard for early and continuous application security driven by the development team."
Image scanning from Snyk will be generally available for Docker users in the third quarter of 2020.
Industry News
September 16, 2024
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the launch of the OpenSearch Software Foundation, a community-driven initiative that will support OpenSearch and its search software, which is used by developers around the world to build search, analytics, observability, and vector database applications.
September 16, 2024
Copado announced the Copado AI platform encompassing a suite of AI-powered DevOps agents.
September 16, 2024
Kong announced the release of Kong Gateway 3.8, a major update that sets a new standard for API management.
September 16, 2024
Perforce Software announced that its mobile application testing platform, Perfecto, will support Apple's latest iOS version, iOS 18, on Monday, September 16, 2024.
September 12, 2024
Check Point® Software Technologies Ltd. has been recognized as a Leader in the latest GigaOm Radar Report for Security Policy as Code.
September 12, 2024
JFrog announced the addition of JFrog Runtime to its suite of security capabilities, empowering enterprises to seamlessly integrate security into every step of the development process, from writing source code to deploying binaries into production.
September 12, 2024
Kong unveiled its new Premium Technology Partner Program, a strategic initiative designed to deepen its engagement with technology partners and foster innovation within its cloud and developer ecosystem.
September 11, 2024
Kong announced the launch of the latest version of Kong Konnect, the API platform for the AI era.
September 10, 2024
Oracle announced new capabilities to help customers accelerate the development of applications and deployment on Oracle Cloud Infrastructure (OCI).
September 10, 2024
JFrog and GitHub unveiled new integrations.
September 10, 2024
Opsera announced its latest platform capabilities for Salesforce DevOps.
September 09, 2024
Progress announced it has entered into a definitive agreement to acquire ShareFile, a business unit of Cloud Software Group, providing SaaS-native, AI-powered, document-centric collaboration, focusing on industry segments including business and professional services, financial services, healthcare and construction.
September 05, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux (RHEL) AI across the hybrid cloud.
