What is Container Registry Scanning?

Container Registry Scanning empowers your team to:
✅ Automatically scan images stored in your container registries (e.g., Docker Hub, ECR, GCR, ACR).
✅ Identify vulnerabilities before images are deployed.
✅ Gain actionable insights to address issues, ensuring secure deployments.

Prerequisites

This feature is only available with Helm version 1.24.2 and above.

Key Features

Comprehensive Registry Support

Our new container image registry scanning now supports a wide range of popular registries, including:

• Elastic Container Registry
• Google Artifact Registry
• Azure Container Registry
• Quay.io
• Harbor
• Nexus

Continuous Vulnerability Detection

Unlike traditional one-time registry scanners operating during CI/CD pipelines, ARMO's solution continuously scans for new vulnerabilities that may arise after image creation/recreation or cluster deployment.
Pre-Deployment Security
Scan images directly from their registries before they are scheduled to deploy in your cluster, preventing vulnerabilities from reaching production environments

Benefits

Early Risk Detection

Identify and address security issues in your container images before they make their way into your deployments, significantly reducing your overall risk profile.

Improved Compliance

Ensure your container images adhere to security best practices and compliance requirements by detecting and remediating vulnerabilities early in the development lifecycle.

Enhanced DevSecOps Integration

Seamlessly incorporate security checks into your existing workflows, enabling developers and security teams to collaborate more effectively.

Simplicity in Connection and Scheduling

Connecting your container registry to the ARMO platform is straightforward and user-friendly. You can link your registry and set up automated scanning schedules with just a few clicks. This simplicity allows teams to focus on development without getting bogged down by complex configurations, ensuring that security becomes an integral part of the workflow without added overhead.

How to Get Started?

1️⃣ Connect your container registry to ARMO.
2️⃣ Enable automated scanning.
3️⃣ Review and act on the vulnerabilities detected via the ARMO dashboard.