CPC G06F 8/71 (2013.01) [G06F 8/63 (2013.01); G06F 9/45558 (2013.01); G06F 21/53 (2013.01); G06F 21/6209 (2013.01); G06F 2009/4557 (2013.01); G06F 2221/033 (2013.01)] | 33 Claims |
1. Computer-readable storage having stored thereon executable instructions for detecting security vulnerabilities, the executable instructions, as a result of being executed by one or more processors of one or more computer systems, causing the one or more computer systems to at least:
receive a request to store, in a container registry associated with an account maintained by a computing resource service provider, a software container image comprising a set of image layers, the request indicating a repository for the software container image;
store, in the container registry, the software container image;
scan a layer of the software container image stored in the container registry for one or more reference identifiers associated with security vulnerabilities;
as a result of said scanning finding a reference identifier from among the one or more reference identifiers associated with the layer of the software container image, provide a notification to an entity associated with the account indicating that a security vulnerability was found;
store, in the container registry, an updated software container image; and
deploy the updated software container image.
|