Document multi-image container scanning
Problem to solve
The purpose of this issue is to update the GitLab Container Scanning documentation to explain how to scan multiple images at the same time, including support for remediations, as well as describing limitations.
See #6946 (comment 295315324) for a proof of concept for a container scan with multiple images
Also see https://gitlab.com/adamcohen/container-scanning-multi-image/pipelines/122506321/security for an example of building multiple images and then scanning them, including specifying multiple
Dockerfile values for remediations.
The following MR should be used as a basis for providing documentation for the proper way to scan a multiple images with multiple
Dockerfiles: Three Docker files with three built images
- Add documentation to explain the concept of scanning multiple images and why someone might want to use it
Provide an example
.gitlab-ci.ymlwhich demonstrates how to scan multiple images
- Demonstrate multi image scanning when all images are from a Docker registry
- Demonstrate multi image scanning when all images are built from local Docker files
- Explain how remediation handling works in the context of multi image scans, including discussing the shortcomings of scenario 3. from this comment