Fair use policies for Scout and PATs

sarahsanders-docker · sarahsanders-docker · commit 95b06e063317 · 2024-12-06T12:35:02.000-08:00
diff --git a/content/manuals/scout/explore/analysis.md b/content/manuals/scout/explore/analysis.md
@@ -20,8 +20,7 @@ If you run image analysis as a one-off task using the CLI or Docker Desktop,
 Docker Scout won't store any data about your image.
 If you enable Docker Scout for your container image repositories however,
 Docker Scout saves a metadata snapshot of your images after the analysis.
-As new vulnerability data becomes available, Docker Scout recalibrates the analysis using the metadata snapshot,
-which means your security status for images is updated in real-time.
+As new vulnerability data becomes available, Docker Scout recalibrates the analysis using the metadata snapshot, which means your security status for images is updated in real-time.
 This dynamic evaluation means there's no need to re-analyze images when new CVE information is disclosed.
 
 Docker Scout image analysis is available by default for Docker Hub repositories.
@@ -89,6 +88,10 @@ analysis is activated.
    The image appears in the list shortly after you push it to the registry.
    It may take a few minutes for the analysis results to appear.
 
+### Fair use
+
+When utilizing the Docker Scout's advanced analysis for registry images, users should be aware that excessive image updates (pushes) can lead to throttling, or additional charges. To ensure fair resource usage and maintain service quality, Docker reserves the right to impose restrictions or apply additional charges to accounts exhibiting excessive use of Docker Scout's advanced analysis for registry images.
+
 ## Analyze images locally
 
 You can analyze local images with Docker Scout using Docker Desktop or the
diff --git a/content/manuals/security/for-developers/access-tokens.md b/content/manuals/security/for-developers/access-tokens.md
@@ -63,6 +63,10 @@ When prompted for a password, enter your personal access token instead of a pass
 > use a personal access token when logging in from the Docker CLI. 2FA is an
 > optional, but more secure method of authentication.
 
+### Fair use
+
+When utilizing PATs, users should be aware that excessive creation of PATs could lead to throttling, or additional charges. To ensure fair resource usage and maintain service quality, Docker reserves the right to impose restrictions or apply additional charges to accounts exhibiting excessive use of PATs.
+
 ## Modify existing tokens
 
 > [!NOTE]
