Safeguard.sh Documentation Center
Enterprise Software Supply Chain Manager (ESSCM)IntegrationsContainer Images

Docker Hub

Connect Docker Hub repositories to generate SBOMs

Docker Hub Integration

Connect your Docker Hub repositories to Safeguard for container image SBOM generation and vulnerability scanning.

Prerequisites

  • A Docker Hub account
  • For private repositories: Docker Hub Access Token

Public Images

Docker Hub public images can be scanned without authentication.

Step 1: Navigate to Integrations

Go to Integrations from the sidebar and click Connect on the Docker Hub card.

Step 2: Enter Image Reference

  1. Select the Public tab
  2. Enter a Name for this configuration
  3. Optionally add a Description
  4. Enter the Docker Hub image reference:
    • Official images: nginx:latest, python:3.11
    • User images: username/image:tag
  5. Click Add

Step 3: Review & Connect

  1. Configure Project Name and Version
  2. Click Connect to complete

Private Images

Step 1: Navigate to Integrations

Go to Integrations from the sidebar and click Connect on the Docker Hub card.

Step 2: Enter Credentials

  1. Select the Private tab
  2. Enter a Name for this configuration
  3. Optionally add a Description
  4. Enter your Docker Hub credentials:
    • Username - Your Docker Hub username
    • Access Token - Your Docker Hub access token
  5. Click Verify Credentials

Step 3: Select Images

  1. Once verified, browse your repositories
  2. Select the images you want to scan
  3. Choose specific tags

Step 4: Configure & Connect

  1. Set Project Name and Version for each image
  2. Click Connect to complete

Creating a Docker Hub Access Token

  1. Sign in to Docker Hub
  2. Click your username then Account Settings
  3. Select Security then Access Tokens
  4. Click New Access Token
  5. Enter a description (e.g., "Safeguard Integration")
  6. Select Read-only access scope
  7. Click Generate
  8. Copy the token immediately (it won't be shown again)

Image Reference Formats

FormatExample
Official imagenginx, nginx:latest, nginx:1.25
User imageusername/myapp:v1.0
Organization imageorgname/myapp:latest
With digestnginx@sha256:abc123...

Troubleshooting

"Credentials verification failed"

  • Ensure you're using an Access Token (not your password)
  • Verify the token hasn't been revoked
  • Check that the username is correct

"Image not found"

  • Verify the image name and tag are correct
  • For private images, ensure the token has access
  • Check if the image/tag exists on Docker Hub

"Rate limit exceeded"

  • Docker Hub has pull rate limits for free accounts
  • Authenticated requests have higher limits
  • Consider upgrading your Docker Hub plan

Azure Container Registry

Connect Azure Container Registry (ACR) to scan container images

GCP Cloud Source

Connect Google Cloud container sources to generate SBOMs

On this page

Docker Hub IntegrationPrerequisitesPublic ImagesStep 1: Navigate to IntegrationsStep 2: Enter Image ReferenceStep 3: Review & ConnectPrivate ImagesStep 1: Navigate to IntegrationsStep 2: Enter CredentialsStep 3: Select ImagesStep 4: Configure & ConnectCreating a Docker Hub Access TokenImage Reference FormatsTroubleshooting"Credentials verification failed""Image not found""Rate limit exceeded"