Resources
Resources

Adding Container Information to your Version

Uleska allows you to associate a container to a version of your Application. This container can be hosted on Docker Hub, another public container registry, or on your own container registry such as JFrog.

This guide will show you how and where to add this information so that container scanning tools can find your version's container and test it.

  • Find the Application you need to update, and find the Version you want to add this Container information to. Click the Edit icon to change its configuration.

Screenshot 2021-10-05 at 10.40.10

  • Click the Container tab at the top of the configuration page

Screenshot 2021-10-05 at 10.33.44

  • You can set your Container configuration using the fields in this form. We can use the example of Kali Linux, from Docker Hub to fill in our form.
    • Container Name in this example is kalilinux/kali
    • Tag we will leave as the default of latest
    • Connection we will leave as "No Connection", as we want to pull the image from Docker Hub
  • Click "Test and Preview Manifest" to verify the components of the the container configuration

Screenshot 2021-10-05 at 10.48.55

  • If the configuration is valid, you will see a green success dialog and the manifest preview will populate with the components of the container
  • If the configuration is not valid, you will see a red dialog detailing the error returned from the repository
  • Click Save to confirm the Container configuration

From this point on, any Container tools (e.g. Clair, JFrog etc) will use the configured Container information to retrieve and test the container as instructed.

How to add a connection to a private container repository

If you store your containers in a private repository, you need to create that connection inside Uleska so we can contact your repository to retrieve images to pass to your configured tools. In the case of tools where the scanning is baked into the repository, we need the same information to query the repository for vulnerability information.

To add an authenticated connection to a private repository, follow these steps:

  • Click "Add New Connection" while on the Container configuration tab, or click Configuration in the left navigation bar, and click the Connections tab

Screenshot 2021-10-05 at 10.33.54

  • Choose "Generic API Connection" from the top dropdown
  • Label the connection as you wish, referencing the repository type you're looking to connect to
  • Add the URL of the repository you're looking to connect to, including a port if required
    • e.g. hub.docker.com:8081

  • Add your Username and Password or access token
  • The Tenant field is likely not needed for a Container repository connection
  • Click Save to create the connection