Highest Voted 'clair' Questions

3

votes

0 answers

Why does Clair find many more vulnerabilities than Docker Hub does?

I've started using Clair to scan my images for vulnerabilities. I noticed though that the standard docker hub Python and Debian stretch images have much vulnerabilities in them according to clair. On docker hub these images only mention…

asked Feb 09 '18 at 08:52

vdboor

21,914
12
83
96

2

votes

0 answers

Running multiple containers in single fargate task for clair container scanning

We are running clair and clair-db containers in the same fargate task. Below is a snippet of our task definition. { "family": "clair", "networkMode": "awsvpc", "containerDefinitions": [ { "name": "db", …

amazon-web-services networking serverless-framework aws-fargate clair

asked Mar 23 '21 at 14:33

Meghana B Srinath

75
1
3
7

2

votes

0 answers

GitLab: Docker in Docker container can't connect to Service container

My GitLab CI/CD has a service image named clair-db, but my main job's image (docker:19.03.6 can't seem to communicate with it. I have reviewed the GitLab Service's documentation, which claims you can connect your build's main image to a service by…

docker gitlab docker-in-docker clair

asked Jul 12 '20 at 18:08

Vismark Juarez

613
4
14
21

2

votes

1 answer

Is clair/jenkins plugin available?

Is there jenkins plugin available for clair for scanning vulnerabilities in Docker images?

security jenkins clair

asked Jan 07 '20 at 11:10

saravanan subramanian

31
2

2

votes

1 answer

Docker Unable to find file

I'm trying to build and run a docker image with docker-compose up However, I get the error can't open /config/config.template: no such file My Dockerfile is as follows: FROM quay.io/coreos/clair-git COPY config.template /config/config.template #Set…

docker docker-compose dockerfile clair

asked Sep 16 '19 at 06:51

Benji

41
2

1

vote

0 answers

Clair V4 installation errors

Can someone help me setting up clair with a docker image which is relatively same as git@github.com:Charlie-belmer/Docker-security-example.git version: '2.1' services: postgres: image: postgres:12 restart: unless-stopped …

docker clair

asked Feb 25 '22 at 04:24

kash88

19
2

1

vote

0 answers

Clair scanner shows Unknown Severity for Debian based docker images

I have OpenShift with Clair set up. Clair scanner scans for vulnerabilities in docker images. Is it possible to get High and Critical severity levels while using Clair scanner v4 to scan Debian based docker images?

docker security docker-registry clair

asked Sep 07 '21 at 11:14

Daniel Andrzejewski

470
4
10

1

vote

1 answer

My Clair pod is restarting at regular intervals

I am using Clair for Vulnerability checks in my harbor. Services like Clair that have thousands of hosts continually hitting the hosting git server(https://git.launchpad.net/ubuntu-cve-tracker/) saturate the server, and so there are scaling measures…

git kubernetes harbor clair

asked Jul 20 '21 at 05:17

Anvesh Muppeda

95
2
6

1

vote

0 answers

Package Analysis in Docker Image

I have pulled a few images to my base machine, and need to analyze the package-versions/installed-libraries version that is currently present in that image. Is there any command/tool to do that?

docker security package dockerfile clair

asked Jun 04 '20 at 07:34

Rajat Sharma

11
1

1

vote

0 answers

How to make URI locations from AST to map on a file read

In ClaiR it is not (yet) possible to write changes made in the AST back to file. For this reason, I create a list lrel[int, int, str] changes = []; with startposition and endposition of the substring to remove, and a string with which it needs to be…

abstract-syntax-tree rascal clair

asked Jan 31 '20 at 07:25

Matty

134
1
7

1

vote

1 answer

How can I negate a regular expression?

I want to know a field if it does not match a certain string: Case 1: When the previous node is not *_pcm.h, then l1 gives the path to file l2. Case 2: When there is no l1 or case 1 is not true, then l is what I need visit(sec) { // case 1 case…

regex rascal clair

asked Oct 28 '19 at 12:22

Matty

134
1
7

1

vote

2 answers

Match root element of partial AST

I want to refactor some C code using Clair and Rascal. I search for a function with a certain name. If I find such a function, I want to replace it with another function. I need to choose between four functions. The function to choose depends on the…

match rascal clair

asked Jul 08 '19 at 07:54

Matty

134
1
7

1

vote

0 answers

Container Scanning feature does not work for multiple images

I've successfully setup the Container Scanning feature from GitLab for a single Docker image. Now I'd like to scan yet another image using the same CI/CD configuration in .gitlab-ci.yml Problem It looks like it is not possible to have multiple…

docker gitlab gitlab-ci gitlab-ci-runner clair

asked Jun 18 '19 at 12:20

ndequeker

7,932
7
61
93

1

vote

2 answers

Unable to run custom script on container startup

I am trying to setup Clair (Docker image vulnerability scanner tool). https://github.com/coreos/clair I have Clair working ok locally using docker-compose. The problem is that when I deploy it to AWS I need to specify the postgres server address,…

docker dockerfile clair

asked Jun 15 '19 at 13:05

James

815
1
13
24

1

vote

0 answers

Using clair when POST /v1/layers a request, got 400 response with error: 'could not find layers'

I'm using clair in my current work(env is nodejs). When I send a POST request to /v1/layers by nodejs module 'clair-client'. I got an error 'could not find layers'. The image is from my local repository, for example…

clair

asked Apr 17 '19 at 03:16

user9613829

11
2

Questions tagged [clair]