Run a Smart Check scan

When Smart Check receives a scan request, it pulls the images specified in the registry being scanned, unpacks each layer, and inspects the content for malware, vulnerabilities, secrets and keys, and compliance problems.

There are several ways that a scan can be triggered:

  • Smart Check automatically starts a scan at midnight UTC for all registries that have been created with the Perform scan periodically option selected.
  • You can manually start a scan by clicking the Scan Now button. (Instructions are below)
  • You can start a scan through the Smart Check API. You can access the API documentation from the menu in the Smart Check administrator console.

Manually start a scan

  1. In the Registries section of the Dashboard icon Dashboard page or on the Registries icon Registries page, click the name of the registry that you want to scan.
  2. Click Scan now icon.
  3. A confirmation message appears. Click OK.

To confirm that scans are running, on the left side of the Smart Check administrator console, click Scans icon Scans. Running scans have a spinning icon next to them.

See scan results

There are several ways to get scan results:

  • You can add a web hook through the Smart Check API with a destination URL that is called automatically when results are ready. See the API documentation for details. Your web hook receiver could, for example, process the scan result and forward a notification to Slack or ServiceNow if appropriate.
  • You can request the results directly through the Smart Check API. For details, refer to the API documentation.
  • You can check the scan results in the Smart Check administrator console:

    In the Registries section of the Dashboard icon Dashboard page or on the Registries icon Registries page, click the registry. You’ll see a summary that includes information about the findings from the latest scan.

    You'll also see a searchable list of images in the registry. To see specific information about an individual image, click the image to display its scan history. Click a scan to display information about it.

Smart Check icon legend

Icon Classification
The Smart Check icon for the 'no findings' scan result The scan didn't detect malware, content findings, vulnerabilities, or checklist findings.
The Smart Check icon for the 'multiple findings' scan result

The scan detected one or more of the following items:

  • malware
  • content findings
  • vulnerabilities
  • checklist findings
The Smart Check icon for the 'only malware' scan result The scan detected malware.
The Smart Check icon for the 'content findings and vulnerability findings' scan result The scan detected content findings and vulnerabilities.
The Smart Check icon for the 'content findings' scan result The scan detected content findings.
The Smart Check icon for the 'vulnerability findings' scan result The scan detected vulnerabilities.
The Smart Check icon for the 'vulnerability resolved' scan result The scan detected vulnerabilities, but they were resolved in the image or overridden in Smart Check.