Clair is an open source project for the static analysis of vulnerabilities in application containers (currently including appc and docker).

  1. In regular intervals, Clair ingests vulnerability metadata from a configured set of sources and stores it in the database.
  2. Clients use the Clair API to index their container images; this creates a list of features present in the image and stores them in the database.
  3. Clients use the Clair API to query the database for vulnerabilities of a particular image; correlating vulnerabilities and features is done for each request, avoiding the need to rescan images.
  4. When updates to vulnerability metadata occur, a notification can be sent to alert systems that a change has occur

 

Related

Nginx-ldapauth-proxy

Nginx-ldapauth-proxy

The nginx-ldap-auth software is a reference implementation of a method for… 

  • 4.2K

Anchore Engine

Anchore Engine The Anchore Engine is an open source project that provides a… 

  • 4.4K

Dagda

Dagda is a tool to perform static analysis of known vulnerabilities, trojans,… 

  • 4.1K

Tell us about a new Kubernetes application

Newsletter

Never miss a thing! Sign up for our newsletter to stay updated.

About

Discover and learn about everything Kubernetes

Navigation
Follow

Submit