Scanning Docker images
Learn how to scan Docker images with OpenText Core SCA.
Last updated
Was this helpful?
Learn how to scan Docker images with OpenText Core SCA.
Last updated
Was this helpful?
OpenText Core SCA doesn't have official Docker image support yet, but scanning is possible using the following workaround.
To scan Docker images with OpenText Core SCA:
Install and run the Docker SBOM CLI plugin from in order to generate a CycloneDX report. Make sure to change the format to CycloneDX, for example, docker sbom username/imagename:latest --format cyclonedx-json --output imagename.sbom.json
Run OpenText Core SCA CLI from and it will automatically pick up the CycloneDX report files. You can view the results in pipeline and OpenText Core SCA UI.