The image view, in the Images tab of the CI/CD page, shows the images in your environments, as they are identified upstream in your CI tools (for example, using the CI Docker plugin) or registry (for example, Jfrom Xray). The view shows the Panoptica identity (Image Id) created for the image. It also shows vulnerabilities discovered in the image, using the Cisco Panoptica scanner.

1807

Click on the row for an image, to show details of the vulnerabilities found by the image scan. These are sorted by severity.

1816

You can expand the detail for specific vulnerabilities to show details for the package in the image with the vulnerability.

1102

Acknowledge (ignore) vulnerabilities

You can acknowledge a vulnerability in an image. This removes the vulnerability from the list for this image, and ignores it if it is found again if the image is scanned again

To acknowledge a vulnerability:

  1. Select the vulnerability from the list.
  2. Click Ignore. The vulnerability is removed from the list.

Image layers

You can filter the list to show vulnerabilities for specific layers in an image. Select the layer from Image layer drop-down list, at the top of the page, This vulnerabilities for the selected layer.

1823

You can also show the a summary of all vulnerabilities in the image, grouped by layer. Select the IMAGES tab.

1797

Fixable Vulnerabilities

You can filter the list of vulnerabilities to show only those that are fixable. Select 'Yes' in the Fixable only drop-down list.

Image Packages & Licenses

The PACKAGES & LICENSES tab shows a list of the packages and licenses used by the image.

1621

Approve or Unapprove images

You can manually mark images as approved or unapproved from this view. An image marked approved is considered identified by Panoptica, and will not be blocked by the Unidentified workloads built-in Deployment rule. Alternatively you can mark an image that you consider malicious as unapproved, and it will be blocked from deployment by the rule.

To approve or unapprove images, select them, and then click Approve images (or Unapprove images), in the toolbar at the top.