All Collections
Setting up Docker container scanning
Container scanning in Google Cloud Platform
Container scanning in Google Cloud Platform

This article explains how you can check your docker images hosted GCP for OS vulnerabilities

Bert Coppens avatar
Written by Bert Coppens
Updated over a week ago

Aikido can seamlessly integrate with Google Cloud Platform's (GCP) Container Analysis for containers hosted on Artifact Registry.

Aikido will use the findings reported by GCP Container Analysis and run them through the same deduplication and de-noising engine you are familiar with. Let's dive into the details of this new functionality and how to enable it.

  1. Connect your GCP Environment: As a prerequisite, your GCP environment must be connected to Aikido. If you have not done this already, navigate to the cloud overview in Aikido. Click on "Connect cloud" and follow the steps to get set up.

  2. Enable Artifact Registry Scanning in GCP: After connecting your GCP environment, navigate to "Artifact Registry" in your GCP environment and then "Settings". Turn on "Vulnerability Scanning".

  3. Start Scanning: After enabling the scanner in GCP, you can go back to Aikido and start a scan for your GCP cloud environment.

  4. Link images: The last step is to link a cloud image to a code repository. During the scan in the previous step, Aikido will look for any repositories you host on the Artifact Registry in GCP. Go to the 'Images' tab on the cloud detail page and link the images to the code repository where the source code is hosted.

Once the cloud images are linked to the code repositories, Aikido will assess and score the findings from Container Analysis and link them to the related cloud environment and code repository.

Aikido does not support the scanning of container images in GCP's "Container Registry" due to the deprecation of that service in the near future.

Did this answer your question?