lacework vulnerability container

Vulnerability assessment for containers

Synopsis

Request on-demand container vulnerability scans and show previous assessments from published images.

PREREQUISITE: Your Lacework account should already be configured with a Container Registry Integration of the container images you are trying to scan or show.

To create a new integration use the following command:

lacework container-registry create

If you prefer to configure the integration via the WebUI, log in to your account at:

https://<ACCOUNT>.lacework.net

Then navigate to Settings > Integrations > Container Registry.

Options

  -h, --help   help for container

Options inherited from parent commands

  -a, --account string      account subdomain of URL (i.e. <ACCOUNT>.lacework.net)
  -k, --api_key string      access key id
  -s, --api_secret string   secret access key
      --api_token string    access token (replaces the use of api_key and api_secret)
      --debug               turn on debug logging
      --json                switch commands output from human-readable to json format
      --nocache             turn off caching
      --nocolor             turn off colors
      --noninteractive      turn off interactive mode (disable spinners, prompts, etc.)
      --organization        access organization level data sets (org admins only)
  -p, --profile string      switch between profiles configured at ~/.lacework.toml
      --subaccount string   sub-account name inside your organization (org admins only)

SEE ALSO

• lacework vulnerability - Container and host vulnerability assessments
• lacework vulnerability container list-assessments - List container vulnerability assessments (default last 24 hours)
• lacework vulnerability container list-registries - List all container registries configured
• lacework vulnerability container scan - Request an on-demand container vulnerability assessment
• lacework vulnerability container show-assessment - Show results of a container vulnerability assessment