For container detection we use Syft. Occasionally, as new versions of Syft are released, we need to update the version we use. To do this:
-
Ensure you're authenticated to Azure and our Azure Container Registry
az login az acr login --name governancecontainerregistry -
Find the latest version of Syft
-
Pull the latest container image
$ docker pull docker.io/anchore/syft:v{LATEST} v0.53.4: Pulling from anchore/syft 0d60d5ab2113: Pull complete 26136f3e3dd3: Pull complete 497aa7f04842: Pull complete Digest: sha256:37e85e8efdeaabb1b6f65c5bc175b664cb05d1aaddd0d922130b8e25d6e49726 Status: Downloaded newer image for anchore/syft:v{LATEST} docker.io/anchore/syft:v{LATEST} -
Retag the container image
$ docker tag docker.io/anchore/syft:v{LATEST} governancecontainerregistry.azurecr.io/syft:v{LATEST} -
Push the new image to the registry
$ docker push governancecontainerregistry.azurecr.io/syft:v{LATEST} The push refers to repository [governancecontainerregistry.azurecr.io/syft] 9c858c120b14: Pushed 840f3b941d62: Pushed 21ce82bb7448: Pushed v{LATEST}: digest: sha256:04ed9c717a814fdccf52758b67333632a0ff16840fc393f5fba5864285eaebbe size: 945 -
Update the container reference in
LinuxScanner -
Update the models that map the Syft output