Following down my list of Docker security concerns, dependency scans can be integrated at various parts of your development. A dependency scan is a run through of your code to see if your dependencies have any documented vulnerabilities. These scans are best to be done in the early stages of development, so that way if a vulnerability is exposed, you wont have to undo your entire CI/CD pipelines to adjust for it. There are three stages to scanning that can alert you of these vulnerabilities; in your code repo, during image build, and after image build. The idea behind running these scans early in development is known as “shift left security”. It can save time, money and peace of mind.