Configure Docker Scout with environment variables

Table of contents

The following environment variables are available to configure the Docker Scout CLI commands, and the corresponding docker/scout-cli container image:

Name Format Description
DOCKER_SCOUT_CACHE_FORMAT String Format of the local image cache; can be oci or tar (default: oci)
DOCKER_SCOUT_CACHE_DIR String Directory where the local SBOM cache is stored (default: $HOME/.docker/scout)
DOCKER_SCOUT_NO_CACHE Boolean When set to true, disables the use of local SBOM cache
DOCKER_SCOUT_OFFLINE Boolean Use offline mode when indexing SBOM
DOCKER_SCOUT_REGISTRY_TOKEN String Token for authenticating to a registry when pulling images
DOCKER_SCOUT_REGISTRY_USER String Username for authenticating to a registry when pulling images
DOCKER_SCOUT_REGISTRY_PASSWORD String Password or personal access token for authenticating to a registry when pulling images
DOCKER_SCOUT_HUB_USER String Docker Hub username for authenticating to the Docker Scout backend
DOCKER_SCOUT_HUB_PASSWORD String Docker Hub password or personal access token for authenticating to the Docker Scout backend
DOCKER_SCOUT_NEW_VERSION_WARN Boolean Warn about new versions of the Docker Scout CLI
DOCKER_SCOUT_EXPERIMENTAL_WARN Boolean Warn about experimental features
DOCKER_SCOUT_EXPERIMENTAL_POLICY_OUTPUT Boolean Disable experimental output for policy evaluation

Offline mode

Under normal operation, Docker Scout cross-references external systems, such as npm, NuGet, or proxy.golang.org, to retrieve additional information about packages found in your image.

When DOCKER_SCOUT_OFFLINE is set to true, Docker Scout image analysis runs in offline mode. Offline mode means Docker Scout doesn't make outbound requests to external systems.

To use offline mode:

$ export DOCKER_SCOUT_OFFLINE=true