All Collections
Setting up Docker container scanning
Container scanning for Gitlab Container Registry
Container scanning for Gitlab Container Registry
Willem Delbare avatar
Written by Willem Delbare
Updated over a week ago

You can now integrate your (cloud) Gitlab Container Registry with Aikido to scan your containers for known vulnerabilities.

Follow the simple steps below to activate this feature:

Step 1: Log into your Gitlab account to gather some data.

We'll have to gather your username (see screenshot)

Step 2: Copy the group ID where the container registry resides (see screenshot)

Step 3: Under personal preferences, Access tokens, create a new token for Aikido (direct link: https://gitlab.com/-/profile/personal_access_tokens).

The scopes included must be: read_api, read_registry

See screenshot:

Step 4: Enter the collected data in Aikido (direct link: https://app.aikido.dev/settings/container-image-registry/add/gitlab)

Step 5: Aikido will now find all container repositories you can access and list them.

Step 6: Repositories can be linked to a code repository in order to perform better deduplication of findings. This step is optional!

Step 7: In the action menu next to the registry, click 'scan repos in registry' to get started. Results will appear in the Feed!

Related Articles
Container scanning for DigitalOcean Container Registry
Container scanning for Gitlab Self Managed Container Registry
Container scanning for Scaleway Container Registry
Container scanning for Cloudsmith Container Registry
Container scanning for Harbor Container Registry
Did this answer your question?