claircore
claircore copied to clipboard
quay
foundation modules for scanning container packages and reporting vulnerabilities
This was originally discovered in StackRox Scanner V2: https://github.com/stackrox/stackrox/issues/7033 StackRox now offers a Scanner based on ClairCore, which also has this same problem. The issue is that ClairCore does not...
To enable mounting of node filesystems, a new MediaType, application/x.filesystem+uncompressed, is introduced. The naming follows RFC6838 standards. As the fileystem does not provide a ReaderAt, the Reader function has been...
TODO - [x] Use specific product CVSS scores and normalized them when https://github.com/quay/claircore/pull/1143 is merged - [x] Delta updating needs to be implemented before this will be mergable - [x]...
Add a per-record iterator interface using rangefunc-style to `jsonblob`. This conveniently aligns `jsonblob` to be used with the Vulnerability and Enrichment datastore iterator interfaces.
SQLite attempts to open WAL files alongside the database, which is a problem when running the tests out of a module download.
Fixes https://github.com/quay/claircore/issues/1326 Support publishing pxgpool stats from two different pools as Prometheus metrics with different `application_name` labels. A clair running in `combo` mode after: ```sh $ curl -s localhost:6061/metrics |...
The [documentation for `io/fs`][1] states: > Note that paths are slash-separated on all systems, even Windows. Paths containing other characters such as backslash and colon are accepted as valid, but...
As I understand it, running Clair in combo mode should be able to export Prometheus metrics for both `libindex` and `libvuln` pgxpool connection-pools. However, running in `combo` mode startup logs...
## Description Complete removes `ReadFile` from `tarfs`. Follow up to https://github.com/quay/claircore/pull/1305.
Using the filepaths discovered by the RPM filescanner we can judge whether or not a language package has been installed via RPM or not. TODO: - [x] Rebase on top...