FS#71485 - [docker] missing `docker scan` recommended by upstream

Attached to Project: Community Packages
Opened by Eric Engestrom (1ace) - Monday, 12 July 2021, 10:16 GMT
Last edited by Morten Linderud (Foxboron) - Monday, 13 December 2021, 22:50 GMT
Task Type Feature Request
Category Packages
Status Closed
Assigned To Sébastien Luttringer (seblu)
Morten Linderud (Foxboron)
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 2
Private No

Details

A couple Docker releases ago (20.10.6), they had the following [packaging note](https://docs.docker.com/engine/release-notes/#20106):
> Provide the [Docker Scan CLI](https://github.com/docker/scan-cli-plugin) plugin on Linux amd64 via a `docker-scan-plugin` package as a recommended dependency for the `docker-ce-cli` package [docker/docker-ce-packaging#537](https://github.com/docker/docker-ce-packaging/pull/537)

It would be great if the Arch package followed this recommendation :)
This task depends upon

Closed by  Morten Linderud (Foxboron)
Monday, 13 December 2021, 22:50 GMT
Reason for closing:  Fixed
Additional comments about closing:  docker-scan is now in the repos + added as a new optdepends in docker.
Comment by Sébastien Luttringer (seblu) - Wednesday, 04 August 2021, 08:52 GMT
We don't have such a recommendation mechanism in Arch Linux. We only have optional dependencies.
We could add a package named docker-scan-plugin (or better docker-plugin-scan) to the optdepends but there is no such package in the Arch Linux repositories.
So, until someone is interested in maintaining the scan plugin in the official repositories, I'll not add it.
Comment by Markus Germann (Kopfweh) - Monday, 13 December 2021, 20:16 GMT
While I do fully understand and follow the reasoning, I wanted to ask whether anything was happening in this regard in the mean time?

I can't even find anything on the AUR.

The github README ( https://github.com/docker/scan-cli-plugin ) of the docker scan plugin explicitly states:
"
On Linux

Docker packaging on Linux comes with Docker scan plugin. You can simply install Docker following the standard linux install
Just try to use the plugin, open a terminal and type the following command:
$ docker scan
Usage: docker scan [OPTIONS] IMAGE

If you get the following error message, you're not using the latest version of Docker on Linux docker: 'scan' is not a docker command."
"

That leads me to the conclusion that imho docker scan should be included in the main docker package.
At first I was thinking my docker installation or the Arch Linux package must be out of date, before even getting the idea to look up this ticket/task/bug report/feature request.
Comment by Morten Linderud (Foxboron) - Monday, 13 December 2021, 21:54 GMT
Partially forgotten, but I assume it has renewed interest because of log4j :)

I'll package it as `docker-scan` as it would follow the convention from `docker-compose`.

Loading...