Docker Image Security - Administrator Guide - 6.6 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
6.6
Creation date
2022-09-29
Last date published
2024-07-30
End_of_Life
EoL
Category
Administrator Guide
Abstract

Information about Cortex XSOAR Docker Image Security practices.

The build process for Cortex XSOAR Docker images is fully open source and available for review. The project contains the source Dockerfiles used to build the images and the accompanying files. Cortex XSOAR uses only the secure Docker Hub registry for its Docker images. You can view the Docker trust information for each image at the image info branch.

docker-trust.png

We automatically update our open source Docker images and their accompanying dependencies (OS and Python). Examples of automatic updates can be viewed on GitHub.

We maintain Docker image information which includes information on Python packages, OS packages and image metadata for all our Docker images. Data image information is updated nightly.

All of our images are continuously scanned using Prisma Cloud and an additional third-party scanner. We evaluate all critical/high findings and actively work to prevent and mitigate security vulnerabilities.

Cortex XSOAR ensures container images are fully patched and do not contain unnecessary packages. Patches and dependencies are applied automatically via our open source dockerfiles build project.