Skip to content

docs(csm-vm): add code-to-cloud Dockerfile source linking section#36897

Open
cyrbouchiat wants to merge 4 commits into
masterfrom
cyril/csm-vm-dockerfile-source-linking
Open

docs(csm-vm): add code-to-cloud Dockerfile source linking section#36897
cyrbouchiat wants to merge 4 commits into
masterfrom
cyril/csm-vm-dockerfile-source-linking

Conversation

@cyrbouchiat
Copy link
Copy Markdown
Contributor

@cyrbouchiat cyrbouchiat commented May 21, 2026

Summary

  • Adds a new "Trace production vulnerabilities to source code" section to the Cloud Security Vulnerabilities overview page
  • Explains how Datadog links CVEs detected on running container images back to the Dockerfile and commit that introduced the vulnerable package (code-to-cloud mapping)
  • Cross-references the existing Link Dockerfile to vulnerabilities section in the CI/CD setup guide
  • Adds two screenshots (light/dark) showing the Dockerfile preview panel in the vulnerability detail view

Context

This section is part of DASH preparation, making the code-to-cloud remediation workflow more discoverable from the main vulnerabilities page.

Test plan

  • Verify the new section renders correctly between "Continuously detect..." and "Automation and Jira integration"
  • Verify the [Link Dockerfile to vulnerabilities] link resolves to the correct CI/CD anchor
  • Verify the screenshot displays correctly in both light and dark mode
  • Verify the new further_reading entry appears in the "Further reading" section at the bottom

Made with Cursor

@cyrbouchiat cyrbouchiat requested a review from a team as a code owner May 21, 2026 10:33
@cyrbouchiat cyrbouchiat requested a review from janine-c May 21, 2026 10:33
@github-actions github-actions Bot added the Images Images are added/removed with this PR label May 21, 2026
cyrbouchiat and others added 4 commits May 21, 2026 12:36
@cyrbouchiat
docs(cloud-security): document runtime package tracking (Preview) for…
49624dc 
… agent setup
@cyrbouchiat
docs(cloud-security): add runtime package tracking (Preview) to Linux…
188f117 
… agent setup
@cyrbouchiat
docs(cloud-security): add enrichment to install section, cost warning…
43497a9 
…, Docker support
@cyrbouchiat @cursoragent
docs(csm-vm): add code-to-cloud Dockerfile source linking section
1f12f59 
Add a new "Trace production vulnerabilities to source code" section to
the Cloud Security Vulnerabilities overview page. This section explains
how Datadog links CVEs detected on running container images back to the
Dockerfile and commit that introduced the vulnerable package, and
cross-references the CI/CD setup guide for OCI annotation configuration.

Also adds two screenshots (light/dark) showing the Dockerfile preview
panel in the vulnerability detail view.

Co-authored-by: Cursor <cursoragent@cursor.com>
@cyrbouchiat cyrbouchiat force-pushed the cyril/csm-vm-dockerfile-source-linking branch from 7b7c3cd to 1f12f59 Compare May 21, 2026 10:38
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 21, 2026

Preview links (active after the build_preview check completes)

Modified Files

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@janine-c janine-c Awaiting requested review from janine-c

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

Images Images are added/removed with this PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cyrbouchiat