Skip to main content
Docker Hub is the default registry for Docker containers. CybeDefend allows you to scan both public and private images using Personal Access Token authentication.

CybeDefend Configuration

FieldDescriptionExample
DockerHub UsernameYour Docker Hub usernameusername
Personal Access TokenDocker Hub Personal Access Tokendckr_pat_xxxxxxxxxxxx

How to Create a Personal Access Token in DockerHub

1

Access Docker Hub Settings

Go to Docker Hub → Account SettingsSecurityAccess Tokens
2

Create New Token

Create a new Access Token with a description (e.g., cybedefend-scanner)
3

Select Permissions

Select Read-only permission (recommended for scanning)
4

Copy Token

Copy the token immediately and paste it in CybeDefend (you won’t see it again!)
The Personal Access Token is only displayed once when created. Make sure to copy it immediately before closing the dialog.

Security Best Practices

Use Read-Only Tokens

Create tokens with minimal permissions required for scanning operations only.

Rotate Tokens Regularly

Change your access tokens periodically to minimize security risks.

Never Commit Tokens

Store tokens in environment variables or secret managers, never in code.

Use Dedicated Accounts

Create a separate Docker Hub account for automated scanning.

Troubleshooting

  • Verify username and token are correct
  • Check if the token has expired
  • Ensure the token has the required permissions
  • Docker Hub has pull rate limits for free accounts
  • Consider upgrading to Docker Hub Pro for higher limits
  • Use authenticated pulls to get higher rate limits