Run a Smart Check scan
When Smart Check receives a scan request, it pulls the images specified in the registry being scanned, unpacks each layer, and inspects the content for malware, vulnerabilities, secrets and keys, and compliance problems.
There are several ways that a scan can be triggered:
- Smart Check automatically starts a scan at midnight UTC for all registries that have been created with the Perform scan periodically option selected.
- You can manually start a scan by clicking the Scan Now button. (Instructions are below)
- You can start a scan through the Smart Check API. You can access the API documentation from the menu in the Smart Check administrator console.
Manually start a scan
- In the Registries section of the Dashboard page or on the Registries page, click the name of the registry that you want to scan.
- Click .
- A confirmation message appears. Click OK.
To confirm that scans are running, on the left side of the Smart Check administrator console, click Scans. Running scans have a spinning icon next to them.
See scan results
There are several ways to get scan results:
- You can add a web hook through the Smart Check API with a destination URL that is called automatically when results are ready. See the API documentation for details. Your web hook receiver could, for example, process the scan result and forward a notification to Slack or ServiceNow if appropriate.
- You can request the results directly through the Smart Check API. For details, refer to the API documentation.
You can check the scan results in the Smart Check administrator console:
In the Registries section of the Dashboard page or on the Registries page, click the registry. You’ll see a summary that includes information about the findings from the latest scan.
You'll also see a searchable list of images in the registry. To see specific information about an individual image, click the image to display its scan history. Click a scan to display information about it.
Smart Check icon legend
|The scan didn't detect malware, content findings, vulnerabilities, or checklist findings.|
The scan detected one or more of the following items:
|The scan detected malware.|
|The scan detected content findings and vulnerabilities.|
|The scan detected content findings.|
|The scan detected vulnerabilities.|
|The scan detected vulnerabilities, but they were resolved in the image or overridden in Smart Check.|