gwen001
commented
5 months ago Issue correctly handled, tool is waiting for human validation.
Closed gwen001 closed 5 months ago
gwen001
commented
5 months ago Issue correctly handled, tool is waiting for human validation.
gwen001
commented
5 months ago Tool has been accepted by the team: https://offsec.tools/tool/clair
Thank you for your contribution!
[tags]containers,docker,kubernetes[/tags] [short_descr]Vulnerability static analysis for containers.[/short_descr] [link] https://quay.github.io/clair/ [/link] [link] https://github.com/quay/clair [/link] [long_descr] Clair is an application for parsing image contents and reporting vulnerabilities affecting the contents. This is done via static analysis and not at runtime.
Clair supports the extraction of contents and assignment of vulnerabilities from the following official base containers:
The above list defines Clair's current support matrix.
Clair v4 utilizes the ClairCore library as its engine for examining contents and reporting vulnerabilities. At a high level you can consider Clair a service wrapper to the functionality provided in the ClairCore library. [/long_descr] [image] https://raw.githubusercontent.com/gwen001/offsectools_www/main/tmp/e5724b2fac17ff19ffca8b15b09336c0.png [/image]