Skip to content

rode/collector-clair

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits

.github/workflows

.github/workflows

 
 

charts/collector-clair

charts/collector-clair

 
 

clair

clair

 
 

listener

listener

 
 

.gitignore

.gitignore

 
 

Dockerfile

Dockerfile

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

collector-clair

collector-clair

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

main.go

main.go

 
 

Repository files navigation

collector-clair

A rode collector for clair scans

Running standalone clair scanner

  1. Download the clair scanner https://github.com/arminc/clair-scanner/releases
  2. Get the DB started up as well as the scanner: 
    docker run -p 5432:5432 -d --name db arminc/clair-db:latest
docker run -p 6060:6060 --link db:postgres -d --name clair arminc/clair-local-scan:latest```
  3. Execute the scan 
    ./clair-scanner --report output.json --ip $(ipconfig getifaddr en0) alpine:3.5
    You must specify your ip address on the network. Using localhost/127.0.0.1/0.0.0.0 doesn't seem to work
  4. Analyze the output. Here is a sample json file: 
    {
    "image": "abc4d437894f",
    "unapproved": [
        "CVE-2020-28928"
    ],
    "vulnerabilities": [
        {
            "featurename": "musl",
            "featureversion": "1.1.24-r8",
            "vulnerability": "CVE-2020-28928",
            "namespace": "alpine:v3.12",
            "description": "",
            "link": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28928",
            "severity": "Low",
            "fixedby": "1.1.24-r10"
        }
    ]
}

About

A rode collector for clair scans

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages