Home Explore Blog CI



docker
1st chunk of `content/manuals/scout/integrations/environment/sysdig.md`
0850a4445489a3b1beb81dc4c8c8cf3c6cafa5d34ad4c4120000000100000975
---
title: Integrate Docker Scout with Sysdig
linkTitle: Sysdig
description: Integrate your runtime environments with Docker Scout using Sysdig
keywords: scout, sysdig, integration, image analysis, environments, supply chain
---

{{% include "scout-early-access.md" %}}

The Sysdig integration enables Docker Scout to automatically detect the images
you're using for your running workloads. Activating this integration gives you
real-time insights about your security posture, and lets you compare your
builds with what's running in production.

## How it works

The Sysdig Agent captures the images of your container workloads. Docker Scout
integrates with the Sysdig API to discover the images in your cluster. This
integration uses Sysdig's Risk Spotlight feature. For more information, see
[Risk Spotlight Integrations (Sysdig docs)](https://docs.sysdig.com/en/docs/sysdig-secure/integrations-for-sysdig-secure/risk-spotlight-integrations/).

> [!TIP]
>
> Sysdig offers a free trial for Docker users to try out the new Docker Scout integration.
>
> {{< button url=`https://sysdig.com/free-trial-for-docker-customers/` text="Sign up" >}}

Each Sysdig integration maps to an environment. When you enable a Sysdig
integration, you specify the environment name for that cluster, such as
`production` or `staging`. Docker Scout assigns the images in the cluster to
the corresponding environment. This lets you use the environment filters to see
vulnerability status and policy compliance for an environment.

Only images analyzed by Docker Scout can be assigned to an environment. The
Sysdig runtime integration doesn't trigger image analysis by itself. To analyze
images automatically, enable a [registry integration](../_index.md#container-registries).

Image analysis must not necessarily precede the runtime integration, but the
environment assignment only takes place once Docker Scout has analyzed the
image.

## Prerequisites

- Install the Sysdig Agent in the cluster that you want to integrate, see [Install Sysdig Agent (Sysdig docs)](https://docs.sysdig.com/en/docs/installation/sysdig-monitor/install-sysdig-agent/).
- Enable profiling for Risk Spotlight Integrations in Sysdig, see [Profiling (Sysdig docs)](https://docs.sysdig.com/en/docs/sysdig-secure/policies/profiling/#enablement).
- You must be an organization owner to enable the integration in the Docker Scout Dashboard.

## Integrate an environment
Title: Integrating Docker Scout with Sysdig for Runtime Environment Analysis
Summary
This document describes how to integrate Docker Scout with Sysdig to automatically detect and analyze images in running container workloads. By leveraging Sysdig's Risk Spotlight feature, Docker Scout provides real-time insights into your security posture, comparing builds with production environments. The integration requires a Sysdig Agent installation with profiling enabled, and assigns images to specific environments (e.g., production, staging) within Docker Scout, allowing for environment-based filtering of vulnerability status and policy compliance. Note that image analysis must be enabled separately via a registry integration.