►
From YouTube: Container Scanning Autoremediation Demo
Description
Demonstrates the autoremediation feature added to Container Scanning in release 12.8
A
My
name
is
Adam
and
I'm,
a
back-end
engineer
on
secure
team
in
this
video
I'm,
going
to
give
a
brief
demonstration
of
using
Auto
remediation
with
container
scanning,
which
is
a
feature
added
in
released
12.8.
First
off
we're
going
to
create
a
new
example
project
which
will
named
container
scanning
auto
remediation
demo
and
we'll
make
it
publicly
accessible.
A
A
A
A
Once
the
container
has
been
built,
its
then
pushed
to
the
container
registry
for
the
project
once
the
build
stage
is
complete.
The
test
stage
is
then
executed,
which
performs
a
vulnerability
scan
of
the
docker
container
by
using
the
container
scanning
template
you'll
notice
in
the
container
scanning
job
that
gets
strategy
has
been
set
to
fetch.
This
is
necessary
for
remediation
support,
because
the
container
scanning
tool
must
have
access
to
the
docker
file,
which
is
contained
in
the
repository.
The
project
I'll
now
go
ahead
and
commit
the
changes.
A
A
We
can
now
click
on
the
more
info
icon
of
the
vulnerability
which
opens
up
a
new
dialog
containing
the
details
of
the
vulnerability
in
this
dialog.
Does
a
button
named
resolve
with
merge
request
if
we
click
this
button,
a
new
merge
request
will
be
created
which
is
populated
with
the
details
of
the
vulnerability
that's
being
fixed,
we
can
switch
to
the
changes
tab
to
see
the
remediation
that
was
applied.
A
A
We
noticed
that
the
dockerfile
just
has
received
a
commit:
titled
fix,
vulnerability,
CVE,
two
zero
one,
nine
one,
four
six.
Ninety
seven
in
mu,
SL
and
clicking
on
the
docker
file
shows
that
the
file
was
automatically
modified
to
include
the
upgrade
command
necessary
for
moving
the
vulnerability.
This
now
concludes
the
video
thanks
for
watching.