baude / image-scanner

[Deprecated] Vulnerability scanner for containers and images
GNU Lesser General Public License v2.1
14 stars 8 forks source link

Add impacted containers/images to xml_parse tuple #28

Closed baude closed 9 years ago

baude commented 9 years ago

When image-scanner is run today, we can associated the container/image being scanned with other images/containers on the system. Meaning, suppose we scan an image with the id of 'foo123bar' and we find cves, the image scanner will then also tell us what containers use 'foo123bar' and should be therefore impacted as well.

Unfortunately, with the xml_parse.py, it is being run post-scan and the correlation of that scan to other containers is not available. But, we can still make the association assuming we have a way to query docker.

With https://github.com/baude/image-scanner/pull/27, you should now be able to pull in the docker-state.json file and create that correlation.

In xml_parse, you will need to:

ajcollins0 commented 9 years ago

This was closed by PR #48