I'm looking for a system that automatically scans my running Docker or Podman images to check if any of their versions are approaching or have reached end-of-life status. For instance, I often use a Docker Compose file to set up PostgreSQL and pin the version to 13. I know tools like Watchtower keep these images updated to the latest version, but they don't notify you when support for a specific version is about to end. This means some services that have been set up for years could lose security updates. I've found endoflife.date, which could help, but I'm searching for a solution that does this check automatically since managing it manually is quite tedious.
3 Answers
As far as I know, there isn't an existing tool that does exactly what you described, but it would be a cool idea for an open-source project if someone wanted to tackle it!
You might want to check out Xeol. It pulls data from endoflife.date to help with this sort of thing. But keep in mind, it requires you to input the image name manually, so it might not fully automate the process you're looking for. Here's the link: https://github.com/xeol-io/xeol.
We use Aqua for managing that sort of thing in our environment. It helps to automate end-of-life notifications for containers. Just a heads up, you might want to search for specifics as their documentation can be a bit tricky to navigate.
Could you share a link? I couldn't find anything on Aqua related to Docker.
I looked into Xeol too, but it seems like a separate component is still needed to read from the Docker socket.