Skip to main content

lacework-global-758

Ensure Image Vulnerability Scanning using Google Container Registry (GCR) Container Analysis or a third party provider (Manual)

Description

Scan images stored in Google Container Registry (GCR) for vulnerabilities.

Remediation

Note: GCR is now deprecated, superseded by Artifact Registry from May 15, 2024.

Using Google Cloud Console:

  1. Go to GCR by visiting: https://console.cloud.google.com/gcr.

  2. Select Settings and, under the Vulnerability Scanning heading, click the Turn On button.

Using Command Line:

gcloud services enable containerscanning.googleapis.com

References

https://cloud.google.com/container-registry/docs/container-analysis
https://cloud.google.com/artifact-analysis/docs/os-overview
https://console.cloud.google.com/marketplace/product/google/containerregistry.googleapis.com

Last updated on