Multi-Stage Scanning Example

This example demonstrates a multi-stage Docker build with integrated security scanning.

Security Scanning: Microscanner → Trivy Migration

⚠️ Important Update: This example has been updated to use Trivy instead of the deprecated Aqua Microscanner.

Why the Change?

Aqua Microscanner has been deprecated for several years
Trivy is the modern replacement and actively maintained successor
Trivy provides better vulnerability detection and performance

What Changed

The security scanning stage (Stage 5) now uses:

✅ Trivy: Modern, fast, and comprehensive vulnerability scanner
❌ ~~Microscanner~~: Deprecated and no longer maintained

Using This Example

Build the image:
```
docker build -t scanning-example .
```

Build specific stages:

# Build and run security scan
docker build --target audit -t scanning-example:audit .

# Build production image
docker build --target prod -t scanning-example:prod .

Run in development:
```
docker-compose up
```

Note

This example uses Node.js 10 which may have compatibility issues with newer package-lock.json formats. Consider updating to a more recent Node.js version for production use.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Multi-Stage Scanning Example

Security Scanning: Microscanner → Trivy Migration

Why the Change?

What Changed

Using This Example

Note

Learn More

FilesExpand file tree

README.md

Latest commit

History

README.md

File metadata and controls

Multi-Stage Scanning Example

Security Scanning: Microscanner → Trivy Migration

Why the Change?

What Changed

Using This Example

Note

Learn More