lacework-global-758
Ensure Image Vulnerability Scanning using Google Container Registry (GCR) Container Analysis or a third party provider (Manual)
Description
Scan images stored in Google Container Registry (GCR) for vulnerabilities.
Remediation
Note: GCR is now deprecated, superseded by Artifact Registry from May 15, 2024.
Using Google Cloud Console:
Go to GCR by visiting: https://console.cloud.google.com/gcr.
Select Settings and, under the Vulnerability Scanning heading, click the
Turn On
button.
Using Command Line:
gcloud services enable containerscanning.googleapis.com
References
https://cloud.google.com/container-registry/docs/container-analysis
https://cloud.google.com/artifact-analysis/docs/os-overview
https://console.cloud.google.com/marketplace/product/google/containerregistry.googleapis.com