{"id":21392193,"url":"https://github.com/sysdiglabs/secure-inline-scan","last_synced_at":"2025-07-13T18:31:06.215Z","repository":{"id":56093790,"uuid":"210961458","full_name":"sysdiglabs/secure-inline-scan","owner":"sysdiglabs","description":null,"archived":false,"fork":false,"pushed_at":"2023-02-22T10:04:22.000Z","size":256,"stargazers_count":18,"open_issues_count":2,"forks_count":11,"subscribers_count":14,"default_branch":"master","last_synced_at":"2023-03-09T00:41:18.792Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sysdiglabs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-09-25T23:54:32.000Z","updated_at":"2023-02-22T10:04:29.000Z","dependencies_parsed_at":"2022-08-15T13:01:01.137Z","dependency_job_id":null,"html_url":"https://github.com/sysdiglabs/secure-inline-scan","commit_stats":null,"previous_names":[],"tags_count":null,"template":null,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sysdiglabs%2Fsecure-inline-scan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sysdiglabs%2Fsecure-inline-scan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sysdiglabs%2Fsecure-inline-scan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sysdiglabs%2Fsecure-inline-scan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sysdiglabs","download_url":"https://codeload.github.com/sysdiglabs/secure-inline-scan/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225908371,"owners_count":17543475,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-22T13:39:34.100Z","updated_at":"2024-11-22T13:39:34.677Z","avatar_url":"https://github.com/sysdiglabs.png","language":"Shell","readme":"| :warning: This scanner is legacy. To work with the new scanner please go to the right [repository](https://github.com/sysdiglabs/secure-inline-scan-examples) or check the [documentation](https://docs.sysdig.com/en/docs/sysdig-secure/vulnerabilities/pipeline/) |\n| --- |\n\n# Sysdig inline scan\n\n\u003e **_WARNING:_**  This repository contains the deprecated inline-scan script V1\n\u003e\n\u003e Sysdig Inline Scan V2 is the recommended version for this old engine.\n\u003e\n\u003e  Check https://docs.sysdig.com/en/integrate-with-ci-cd-tools.html for more information about the old engine (2022)\n\u003e\n\u003e  Check https://docs.sysdig.com/en/docs/sysdig-secure/vulnerabilities/pipeline for more about the new engine (2023)\n\n## Note about older version (1.x)\n\n[Sysdig inline scan V1](v1.md) is still available, but not supported. V1 version runs as a script, and requires a working Docker environment (binaries and daemon), or can run as a container, mounting the docker socket inside the container.\n\n## Migrating to V2\n\nIf running the inline-scan via container:\n\n```\ndocker run --rm -v /var/run/docker.sock:/var/run/docker.sock sysdiglabs/secure-inline-scan analyze ... \u003cimage-to-scan\u003e\n```\n\nmigration to the new version requires changing the image name to `quay.io/sysdig/secure-inline-scan:2` and adding the `--storage-type=docker-daemon` parameter, and removing the `analyze` option:\n\n```\ndocker run --rm -v /var/run/docker.sock:/var/run/docker.sock quay.io/sysdig/secure-inline-scan:2 ... \u003cimage-to-scan\u003e --storage-type=docker-daemon\n```\n\ndepending on the `docker.sock`permissions you might need to run as root (adding `-u` to the `docker run` command) or adjusting the permissions in the docker socket.\n\nIf you are executing the script as:\n\n```\ninline_scan.sh ... \u003cimage-to-scan\u003e\n```\n\nthen you will need to execute the inline-scanner as a container instead, as described previously.\n\n### Breaking changes\n\n* **Execution mode**: The inline scan is now executed in a different way. You need to directly run the container instead of using the old `inline_scan.sh` wrapper script. This means that you might need to adapt your automations or pipelines to migrate to inline-scan v2\n\n * **TLS verification**: starting from version 2, you'll need to explicitly pass `--sysdig-skip-tls` if targeting an on-prem with non verifiable certificate.\n\n----\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsysdiglabs%2Fsecure-inline-scan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsysdiglabs%2Fsecure-inline-scan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsysdiglabs%2Fsecure-inline-scan/lists"}