New Forrester Report: Show, Don’t Tell Your Developers How To Write Secure Code
Download ReportDownload Report

Keep secrets out of Docker images

GitGuardian scans your Docker images for secrets and sensitive data. Find hardcoded API keys, database credentials, private keys, and a lot more in your Docker images before publishing them to public or private artifact registries.

  • Scan Dockerfile, build args and Docker image layers’ filesystem
  • Integrate with your CI/CD pipelines
  • Find %ndet%+ types of secrets and sensitive files

Start scanning docker
from your CLI in 3 steps

Get your GitGuardian API key

Sign up here. Once you’re done, generate your API key
to use ggshield, the GitGuardian CLI app.

GGShield install step 1

Install ggshield CLI

Follow the steps in the documentation
to install ggshield on your machine.

GGShield install step 2

Scan a Docker image

Hooray 🎉 You can now scan your first Docker image
for hardcoded secrets. Run ggshield scan docker <IMAGE_NAME>.

Go further

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Link to resource
{{data.category}}
Vue ATTR

{{data.name}}

{{data.description}}

{{data.ctaText}}
Chevron right
Link to resource
{{data.category}}
Vue ATTR

{{data.name}}

{{data.description}}

{{data.ctaText}}
Chevron right
Link to resource
{{data.category}}
Vue ATTR

{{data.name}}

{{data.description}}

{{data.ctaText}}
Chevron right

Want to see more of GitGuardian?

Connect with our product experts
and get a 1:1 demo

By submitting this form, I agree to GitGuardian’s Privacy Policy

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.