search

cve-search / vulnerability-lookup

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD).
https://vulnerability.circl.lu
GNU Affero General Public License v3.0
136 stars 16 forks source link

Adding vulnerability lookup as part of a docker image. #82

Open mcacheiro opened 2 weeks ago

mcacheiro commented 2 weeks ago

Dear all,

We are trying to add vulnerability lookup as part of a docker image (based on registry.access.redhat.com/ubi9:9.4). The installation works until the step in which

poetry run start

is executed. At that point, the image does not move ahead, and the process cannot be completed. We tried using nohup but, in that case, the application does not start. The possibility of using the application through systemd may not be feasible, as it usually does not work very well with docker images. Is there any advice you can provide?

Thanks a lot, and best regards.

adulau commented 2 weeks ago

We are running vulnerability-lookup in production in LXC containers without any issue. Just keep in mind that the fetcher for the initial importer might be heavy.