Vulnerability scanning must be enabled for all repositories in MSR.

An XCCDF Rule

Description

<VulnDiscussion>Enabling vulnerability scanning for all repositories in Mirantis Secure Registry (MSR) is a critical security practice that helps organizations identify and mitigate potential security risks associated with container images. Enabling scanning for all repositories in MSR helps identify and prioritize security issues that could pose risks to the containerized applications.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-260943r966186_rule
Severity: Medium
References: CCI-000366 CCI-001067 CCI-002605
Updated: 23 days ago

If MSR is not being utilized, this is Not Applicable.

Enable vulnerability scanning on the MSR UI by logging in to the MSR web UI and navigating to System >> Security Tab.

Click the "Enable Scanning" slider to enable this capability.
Sync (online) or upload (offline) the vulnerability database.

Vulnerability scanning must be enabled for all repositories in MSR.

Description

Remediation - Manual Procedure