Home Explore Blog CI



docker
content/manuals/scout/_index.md
7ec4e6669211be99403210764af4a6f34f4073700ec5116d0000000300000886
---
title: Docker Scout
weight: 40
keywords: scout, supply chain, vulnerabilities, packages, cves, scan, analysis, analyze
description:
  Get an overview on Docker Scout to proactively enhance your software supply chain security
aliases:
  - /engine/scan/
params:
  sidebar:
    group: Products
grid:
  - title: Quickstart
    link: /scout/quickstart/
    description: Learn what Docker Scout can do, and how to get started.
    icon: explore
  - title: Image analysis
    link: /scout/image-analysis/
    description: Reveal and dig into the composition of your images.
    icon: radar
  - title: Advisory database
    link: /scout/advisory-db-sources/
    description: Learn about the information sources that Docker Scout uses.
    icon: database
  - title: Integrations
    description: |
      Connect Docker Scout with your CI, registries, and other third-party services.
    link: /scout/integrations/
    icon: multiple_stop
  - title: Dashboard
    link: /scout/dashboard/
    description: |
      The web interface for Docker Scout.
    icon: dashboard
  - title: Policy
    link: /scout/policy/
    description: |
      Ensure that your artifacts align with supply chain best practices.
    icon: policy
  - title: Upgrade
    link: /subscription/change/
    description: |
      A Personal subscription includes up to 1 repository. Upgrade for more.
    icon: upgrade
---

Container images consist of layers and software packages, which are susceptible to vulnerabilities.
These vulnerabilities can compromise the security of containers and applications.

Docker Scout is a solution for proactively enhancing your software supply chain security.
By analyzing your images, Docker Scout compiles an inventory of components, also known as a Software Bill of Materials (SBOM).
The SBOM is matched against a continuously updated vulnerability database to pinpoint security weaknesses.

Docker Scout is a standalone service and platform that you can interact with
using Docker Desktop, Docker Hub, the Docker CLI, and the Docker Scout Dashboard.
Docker Scout also facilitates integrations with third-party systems, such as container registries and CI platforms.

{{< grid >}}
Chunks
fda968c3 (1st chunk of `content/manuals/scout/_index.md`)
Title: Docker Scout: Enhancing Software Supply Chain Security
Summary
Docker Scout is a solution designed to proactively enhance software supply chain security by analyzing container images for vulnerabilities. It compiles a Software Bill of Materials (SBOM) and matches it against a vulnerability database. Docker Scout can be accessed through Docker Desktop, Docker Hub, the Docker CLI, and the Docker Scout Dashboard, and integrates with third-party systems.