_index.md

title	Docker Scout
weight	40
keywords	scout, supply chain, vulnerabilities, packages, cves, scan, analysis, analyze
description	Get an overview on Docker Scout to proactively enhance your software supply chain security
aliases	/engine/scan/
params	sidebar group Products
grid	title link description icon Quickstart /scout/quickstart/ Learn what Docker Scout can do, and how to get started. explore title link description icon Image analysis /scout/image-analysis/ Reveal and dig into the composition of your images. radar title link description icon Advisory database /scout/advisory-db-sources/ Learn about the information sources that Docker Scout uses. database title description link icon Integrations Connect Docker Scout with your CI, registries, and other third-party services. /scout/integrations/ multiple_stop title link description icon Dashboard /scout/dashboard/ The web interface for Docker Scout. dashboard title link description icon Policy /scout/policy/ Ensure that your artifacts align with supply chain best practices. policy title link description icon Upgrade /subscription/change/ A Personal subscription includes up to 1 repository. Upgrade for more. upgrade

Container images consist of layers and software packages, which are susceptible to vulnerabilities. These vulnerabilities can compromise the security of containers and applications.

Docker Scout is a solution for proactively enhancing your software supply chain security. By analyzing your images, Docker Scout compiles an inventory of components, also known as a Software Bill of Materials (SBOM). The SBOM is matched against a continuously updated vulnerability database to pinpoint security weaknesses.

Docker Scout is a standalone service and platform that you can interact with using Docker Desktop, Docker Hub, the Docker CLI, and the Docker Scout Dashboard. Docker Scout also facilitates integrations with third-party systems, such as container registries and CI platforms.

{{< grid >}}