search

SUSE / Portus

Authorization service and frontend for Docker registry (v2)
http://port.us.org/
Apache License 2.0
3k stars 471 forks source link

Anchore Engine security scan support #2234

Open bonifaido opened 4 years ago

bonifaido commented 4 years ago

Summary

This PR adds support for Anchore Engine based security scanning.

Also, it improves the stabality of security scans, so crashed scans can be restarted easily, and nil returned by scanners means in-progress.

Docker-compose based dev environment improvements:

I would also add some parts to the development docs, how to test the Anchore based stuff.

Also I plan to add an Anchore feed check, so if /v1/system/feeds returns an empty result (see below), we don't return any results (just wait in a loop).

        ],
        "last_full_sync": null,
        "name": "vulnerabilities",
        "updated_at": null
    }
]

Update: just added this ☝️

NOTE: The registry has to be added to Anchore with the follwing cURL/Httpie command:

http --auth admin:foobar anchore:8228/v1/registries registry_user=admin registry=registry:5000 registry_pass=adminpass registry_verify:=false

cc @mssola

stale[bot] commented 4 years ago

Thanks for all your contributions! This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

SuperSandro2000 commented 4 years ago

Go away spam bot!

stale[bot] commented 4 years ago

Thanks for all your contributions! This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

SuperSandro2000 commented 4 years ago

Spam bot

sagikazarmark commented 4 years ago

@mssola is there anything we can do in this PR?

I think it's a great addition to the project, competing projects (like Harbor) already added support for it.

SuperSandro2000 commented 4 years ago

I myself consider this project dead or without a maintainer.

bonifaido commented 4 years ago

Yeah possibly, at least it looks like that.

stale[bot] commented 4 years ago

Thanks for all your contributions! This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

SuperSandro2000 commented 4 years ago

Bump

stale[bot] commented 3 years ago

Thanks for all your contributions! This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

sagikazarmark commented 3 years ago

Bump

stale[bot] commented 2 years ago

Thanks for all your contributions! This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.