Walks like a Black Duck: Docker’s security teaseware tool unmasked
I read of Docker’s announcement June 6, about a new security vetting online tool for its containers. Yes, it’s a step forward. But it’s not Docker’s.
Last week, I received a briefing and did a proof-of-concept test on another SaaS container-checking tool, Black Duck’s Security Checker.
Hmmmm. Docker’s tool quacks like a Black Duck.
After some quick queries, I confirmed that these tools are indeed the same.
The short of it is this: there are two SaaS front ends pointing to the same tool—Black Duck’s Hub product, which vets, among other things, Docker containers. You get three free tests at Black Duck. However, at Docker, it’s FREE-AS-IN-BEER until Aug. 1, 2016. You pick. It’s subscription-only afterwards, unless the model changes.
To read this article in full or to leave a comment, please click here