Harbor Vulnerability

Harbor Vulnerability Scanning is a built-in security feature within Harbor, the open-source cloud-native container registry, that performs static analysis of container images to identify security vulnerabilities and compliance issues by integrating with pluggable vulnerability scanners including Trivy, Clair, and other third-party scanning solutions. The platform automatically scans container images at configurable intervals or on-demand, generates detailed vulnerability reports with severity ratings and CVE references, and enables deployment security policies that prevent images exceeding specified vulnerability thresholds from being pulled, helping organizations strengthen their software supply chain security before containers reach production environments.