1. Log in to the CSG Console.
2. On the left navigation bar, select Image security > image setting to go to the image setting page.
3. Select the sacn settings tab. Set the scanning type, whether to automatically scan the newly added images of a node, and periodic scanning.
The following two scanning types are supported:
− Fast Scanning: Only scans the software installed by the package manager.
− Deep Scanning: Adds the scanning of third-party dependent libraries, Web framework libraries, virus Trojan horses, and other malicious files based on fast scanning.
4. Once the configuration is complete, click "save" .
Specifying Trusted Images
1. Log in to the CSG Console.
2. On the left navigation bar, select Image security > image setting to go to the image setting page.
3. Select the trusted image tab. Specify trusted repositories, basic images, and node images. You can select to ignore or block untrusted images, or report an alarm.
4. Once the configuration is complete, click"save".
Viewing Risk Scores
1. Log in to the CSG Console.
2. On the left navigation bar, select Image security > image setting to go to the image setting page.
3. Select the Risk score tab. You can customize the setting of scoring items.
− The total score is 100. The sum of all scoring items shall not exceed 100 and the sum of all sub-deduction items shall not exceed the maximum deduction value of the corresponding scoring items.
− According to the deduction rules, once a risk item is found, the corresponding score is deducted, regardless of how many times the same item are found. For example, 25 points are deducted as long as high-risk vulnerabilities are found, irregardless of the number of high-risk vulnerabilities.
− A description of the security score value of each score segment is described on the right side of the risk score table.
4. Once the configuration is complete, click"save".