docker scout policy

内容説明Evaluate policies against an image and display the policy evaluation results (experimental)
利用方法docker scout policy [IMAGE | REPO]

試験的

This command is experimental.

Experimental features are intended for testing and feedback as their functionality or design may change between releases without warning or can be removed entirely in a future release.

内容説明

The docker scout policy command evaluates policies against an image. The image analysis is uploaded to Docker Scout where policies get evaluated.

The policy evaluation results may take a few minutes to become available.

オプション

オプションデフォルト内容説明
-e, --exit-codeReturn exit code '2' if policies are not met, '0' otherwise
--only-policyComma separated list of policies to evaluate
--orgNamespace of the Docker organization
-o, --outputWrite the report to a file
--platformPlatform of image to pull policy results from
--to-envName of the environment to compare to
--to-latestLatest image processed to compare to

利用例

Evaluate policies against an image and display the results

$ docker scout policy dockerscoutpolicy/customers-api-service:0.0.1

Evaluate policies against an image for a specific organization

$ docker scout policy dockerscoutpolicy/customers-api-service:0.0.1 --org dockerscoutpolicy

Evaluate policies against an image with a specific platform

$ docker scout policy dockerscoutpolicy/customers-api-service:0.0.1 --platform linux/amd64

Compare policy results for a repository in a specific environment

$ docker scout policy dockerscoutpolicy/customers-api-service --to-env production