Updates to container image continuous vulnerability re-scan policy

Updates to container image continuous vulnerability re-scan policy
November 10, 2025

Microsoft Defender for Cloud has temporarily updated its container image continuous vulnerability re-scan policy.

Images stored in container registries are scanned when pushed and periodically re-scanned to maintain up-to-date vulnerability assessments. With this temporary update, images are now re-scanned daily if they were pushed to or pulled from the registry within the last 30 days.

This change shortens the previous 90-day re-scan period to 30 days, ensuring more current vulnerability data for actively used images. Vulnerability information for images older than 30 days remains available from previous scans but is no longer updated.

Learn more about container vulnerability scanning in Defender for Cloud.

General Availability of Jfrog Artifactory and Docker Hub container registry support
November 3, 2025

We’re announcing the general availability of Jfrog Artifactory (Cloud) and Docker Hub container registry support in Microsoft Defender for Containers and Defender CSPM.

This release extends Microsoft Defender for Containers coverage to external registries, enabling vulnerability scanning of container images stored in your organization’s JFrog Artifactory (Cloud) and Docker Hub accounts using Microsoft Defender Vulnerability Management (MDVM). This enhancement helps you detect vulnerabilities earlier and strengthen your cloud security posture.

Learn more about Agentless vulnerability assessment for Jfrog Artifactory (Cloud) and Agentless vulnerability assessment for Docker Hub.