2016-02-23 23:43:11 +00:00
# Clair v1 API
- [Error Handling ](#error-handling )
- [Layers ](#layers )
- [POST ](#post-layers )
2016-03-15 16:46:56 +00:00
- [GET ](#get-layersname )
2016-02-23 23:43:11 +00:00
- [DELETE ](#delete-layersname )
- [Namespaces ](#namespaces )
- [GET ](#get-namespaces )
- [Vulnerabilities ](#vulnerabilities )
2016-02-26 10:18:45 +00:00
- [List ](#get-namespacesnsnamevulnerabilities )
2016-02-23 23:43:11 +00:00
- [POST ](#post-namespacesnamevulnerabilities )
- [GET ](#get-namespacesnsnamevulnerabilitiesvulnname )
- [PUT ](#put-namespacesnsnamevulnerabilitiesvulnname )
- [DELETE ](#delete-namespacesnsnamevulnerabilitiesvulnname )
- [Fixes ](#fixes )
- [GET ](#get-namespacesnsnamevulnerabilitiesvulnnamefixes )
- [PUT ](#put-namespacesnsnamevulnerabilitiesvulnnamefixesfeaturename )
- [DELETE ](#delete-namespacesnsnamevulnerabilitiesvulnnamefixesfeaturename )
- [Notifications ](#notifications )
- [GET ](#get-notificationsname )
- [DELETE ](#delete-notificationname )
## Error Handling
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
Every route can optionally provide an `Error` property on the response object.
The HTTP status code of the response should indicate what type of failure occurred and how the client should reaction.
2016-07-11 18:35:35 +00:00
#### Client Retry Behavior
2016-02-23 23:43:11 +00:00
2016-02-24 20:42:17 +00:00
| Code | Name | Retry Behavior |
|------|-----------------------|---------------------------------------------------------------------------------------------------------------------------------------------------|
| 400 | Bad Request | The body of the request invalid. The request either must be changed before being retried or depends on another request being processed before it. |
| 404 | Not Found | The requested resource could not be found. The request must be changed before being retried. |
| 422 | Unprocessable Entity | The request body is valid, but unsupported. This request should never be retried. |
| 500 | Internal Server Error | The server encountered an error while processing the request. This request should be retried without change. |
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 400 Bad Request
Content-Type: application/json;charset=utf-8
Server: clair
{
"Error": {
"Message": "example error message"
}
}
```
## Layers
2016-07-11 18:35:35 +00:00
### POST /layers
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
2016-11-17 16:54:23 +00:00
The POST route for the Layers resource performs the analysis of a Layer from the provided path.
In order to analyze a container image, this route has to be called for each layer that [composes ](https://docs.docker.com/engine/userguide/storagedriver/imagesandcontainers/ ) it, in the proper order and with the parent relationship specified. For instance, to analyze an image composed of three layers A->B->C, where A is the base layer (i.e. `FROM debian:jessie` ), three API calls must be made to this route, from A to C. Also, when analyzing B, A must be set as the parent, then when analyzing C, B must be defined as the parent.
This request blocks for the entire duration of the downloading and indexing of the layer and displays the provided Layer with an updated `IndexByVersion` property.
The Name field must be unique globally. Consequently, using the Blob digest describing the Layer content is not sufficient as Clair won't be able to differentiate two empty filesystem diffs that belong to two different image trees.
2016-05-04 19:47:14 +00:00
The Authorization field is an optional value whose contents will fill the Authorization HTTP Header when requesting the layer via HTTP.
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
POST http://localhost:6060/v1/layers HTTP/1.1
{
"Layer": {
"Name": "523ef1d23f222195488575f52a39c729c76a8c5630c9a194139cb246fb212da6",
2016-05-04 19:47:14 +00:00
"Path": "https://mystorage.com/layers/523ef1d23f222195488575f52a39c729c76a8c5630c9a194139cb246fb212da6/layer.tar",
2016-05-19 14:09:43 +00:00
"Headers": {
"Authorization": "Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9.EkN-DOsnsuRjRO6BxXemmJDm3HbxrbRzXglbN2S4sOkopdU4IsDxTI8jO19W_A4K8ZPJijNLis4EZsHeY559a4DFOd50_OqgHGuERTqYZyuhtF39yxJPAjUESwxk2J5k_4zM3O-vtd1Ghyo4IbqKKSy6J9mTniYJPenn5-HIirE"
},
2016-02-23 23:43:11 +00:00
"ParentName": "140f9bdfeb9784cf8730e9dab5dd12fbd704151cf555ac8cae650451794e5ac2",
"Format": "Docker"
}
}
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 201 Created
Content-Type: application/json;charset=utf-8
Server: clair
{
"Layer": {
"Name": "523ef1d23f222195488575f52a39c729c76a8c5630c9a194139cb246fb212da6",
2016-05-04 19:47:14 +00:00
"Path": "https://mystorage.com/layers/523ef1d23f222195488575f52a39c729c76a8c5630c9a194139cb246fb212da6/layer.tar",
2016-05-19 14:09:43 +00:00
"Headers": {
"Authorization": "Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9.EkN-DOsnsuRjRO6BxXemmJDm3HbxrbRzXglbN2S4sOkopdU4IsDxTI8jO19W_A4K8ZPJijNLis4EZsHeY559a4DFOd50_OqgHGuERTqYZyuhtF39yxJPAjUESwxk2J5k_4zM3O-vtd1Ghyo4IbqKKSy6J9mTniYJPenn5-HIirE"
},
2016-02-23 23:43:11 +00:00
"ParentName": "140f9bdfeb9784cf8730e9dab5dd12fbd704151cf555ac8cae650451794e5ac2",
"Format": "Docker",
"IndexedByVersion": 1
}
}
```
2016-07-11 18:35:35 +00:00
### GET /layers/`:name`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
2016-11-17 16:54:23 +00:00
The GET route for the Layers resource displays a Layer and optionally all of its features and vulnerabilities. For an image composed of three layers A->B->C, calling this route on the third layer (C) will returns all the features and vulnerabilities for the entire image, including the analysis data gathered from the parent layers (A, B). For instance, a feature (and its potential vulnerabilities) detected in the first layer (A) will be shown when querying the third layer (C). On the other hand, a feature detected in the first layer (A) but then removed in either following layers (B, C) will not appear.
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Query Parameters
2016-02-23 23:43:11 +00:00
| Name | Type | Required | Description |
|-----------------|------|----------|-------------------------------------------------------------------------------|
| features | bool | optional | Displays the list of features indexed in this layer and all of its parents. |
| vulnerabilities | bool | optional | Displays the list of vulnerabilities along with the features described above. |
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```
GET http://localhost:6060/v1/layers/17675ec01494d651e1ccf81dc9cf63959ebfeed4f978fddb1666b6ead008ed52?features& vulnerabilities HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: clair
{
"Layer": {
"Name": "17675ec01494d651e1ccf81dc9cf63959ebfeed4f978fddb1666b6ead008ed52",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"ParentName": "140f9bdfeb9784cf8730e9dab5dd12fbd704151cf555ac8cae650451794e5ac2",
"IndexedByVersion": 1,
"Features": [
{
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "8.23-4",
"Vulnerabilities": [
{
"Name": "CVE-2014-9471",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Description": "The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the \"--date=TZ=\"123\"345\" @1 \" string to the touch or date command.",
"Link": "https://security-tracker.debian.org/tracker/CVE-2014-9471",
"Severity": "Low",
"FixedBy": "9.23-5"
}
]
}
]
}
}
```
2016-07-11 18:35:35 +00:00
### DELETE /layers/`:name`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The DELETE route for the Layers resource removes a Layer and all of its children from the database.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
DELETE http://localhost:6060/v1/layers/17675ec01494d651e1ccf81dc9cf63959ebfeed4f978fddb1666b6ead008ed52 HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Server: clair
```
## Namespaces
2016-07-11 18:35:35 +00:00
### GET /namespaces
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The GET route for the Namespaces resource displays a list of namespaces currently being managed.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
GET http://localhost:6060/v1/namespaces HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: clair
{
"Namespaces": [
2016-03-16 18:52:32 +00:00
{ "Name": "debian:8" },
{ "Name": "debian:9" }
2016-02-23 23:43:11 +00:00
]
}
```
## Vulnerabilities
2016-07-11 18:35:35 +00:00
### GET /namespaces/`:nsName`/vulnerabilities
2016-02-26 10:18:45 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-26 10:18:45 +00:00
The GET route for the Vulnerabilities resource displays the vulnerabilities data for a given namespace.
2016-07-11 18:35:35 +00:00
#### Query Parameters
2016-02-26 10:18:45 +00:00
| Name | Type | Required | Description |
|---------|------|----------|------------------------------------------------------------|
| limit | int | required | Limits the amount of the vunlerabilities data for a given namespace. |
| page | int | required | Displays the specific page of the vunlerabilities data for a given namespace. |
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-26 10:18:45 +00:00
```json
2016-02-29 08:29:40 +00:00
GET http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities?limit=2 HTTP/1.1
2016-02-26 10:18:45 +00:00
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-26 10:18:45 +00:00
```json
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: clair
{
"Vulnerabilities": [
{
"Name": "CVE-1999-1332",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-26 10:18:45 +00:00
"Description": "gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.",
"Link": "https://security-tracker.debian.org/tracker/CVE-1999-1332",
"Severity": "Low"
},
{
"Name": "CVE-1999-1572",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-26 10:18:45 +00:00
"Description": "cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.",
"Link": "https://security-tracker.debian.org/tracker/CVE-1999-1572",
"Severity": "Low",
"Metadata": {
"NVD": {
"CVSSv2": {
"Score": 2.1,
"Vectors": "AV:L/AC:L/Au:N/C:P/I:N"
}
}
}
}
2016-02-29 08:29:40 +00:00
],
"NextPage":"gAAAAABW1ABiOlm6KMDKYFE022bEy_IFJdm4ExxTNuJZMN0Eycn0Sut2tOH9bDB4EWGy5s6xwATUHiG-6JXXaU5U32sBs6_DmA=="
2016-02-26 10:18:45 +00:00
}
```
2016-07-11 18:35:35 +00:00
### POST /namespaces/`:name`/vulnerabilities
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The POST route for the Vulnerabilities resource creates a new Vulnerability.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
2016-02-26 07:52:54 +00:00
POST http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities HTTP/1.1
2016-02-23 23:43:11 +00:00
{
"Vulnerability": {
"Name": "CVE-2014-9471",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Link": "https://security-tracker.debian.org/tracker/CVE-2014-9471",
"Description": "The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the \"--date=TZ=\"123\"345\" @1 \" string to the touch or date command.",
"Severity": "Low",
"Metadata": {
"NVD": {
"CVSSv2": {
"Score": 7.5,
"Vectors": "AV:N/AC:L/Au:N/C:P/I:P"
}
}
},
"FixedIn": [
{
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "8.23-1"
}
]
}
}
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 201 Created
Content-Type: application/json;charset=utf-8
Server: clair
{
"Vulnerability": {
"Name": "CVE-2014-9471",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Link": "https://security-tracker.debian.org/tracker/CVE-2014-9471",
"Description": "The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the \"--date=TZ=\"123\"345\" @1 \" string to the touch or date command.",
"Severity": "Low",
"Metadata": {
"NVD": {
"CVSSv2": {
"Score": 7.5,
"Vectors": "AV:N/AC:L/Au:N/C:P/I:P"
}
}
},
"FixedIn": [
{
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "8.23-1"
}
]
}
}
```
2016-07-11 18:35:35 +00:00
### GET /namespaces/`:nsName`/vulnerabilities/`:vulnName`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The GET route for the Vulnerabilities resource displays the current data for a given vulnerability and optionally the features that fix it.
2016-07-11 18:35:35 +00:00
#### Query Parameters
2016-02-23 23:43:11 +00:00
| Name | Type | Required | Description |
|---------|------|----------|------------------------------------------------------------|
| fixedIn | bool | optional | Displays the list of features that fix this vulnerability. |
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
2016-02-26 07:52:54 +00:00
GET http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2014-9471?fixedIn HTTP/1.1
2016-02-23 23:43:11 +00:00
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: clair
{
"Vulnerability": {
"Name": "CVE-2014-9471",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Link": "https://security-tracker.debian.org/tracker/CVE-2014-9471",
"Description": "The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the \"--date=TZ=\"123\"345\" @1 \" string to the touch or date command.",
"Severity": "Low",
"Metadata": {
"NVD": {
"CVSSv2": {
"Score": 7.5,
"Vectors": "AV:N/AC:L/Au:N/C:P/I:P"
}
}
},
"FixedIn": [
{
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "8.23-1"
}
]
}
}
```
2016-07-11 18:35:35 +00:00
### PUT /namespaces/`:nsName`/vulnerabilities/`:vulnName`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The PUT route for the Vulnerabilities resource updates a given Vulnerability.
The "FixedIn" property of the Vulnerability must be empty or missing.
Fixes should be managed by the Fixes resource.
If this vulnerability was inserted by a Fetcher, changes may be lost when the Fetcher updates.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
PUT http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2014-9471
{
"Vulnerability": {
"Name": "CVE-2014-9471",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Link": "https://security-tracker.debian.org/tracker/CVE-2014-9471",
"Description": "The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the \"--date=TZ=\"123\"345\" @1 \" string to the touch or date command.",
"Severity": "Low",
"Metadata": {
"NVD": {
"CVSSv2": {
"Score": 7.5,
"Vectors": "AV:N/AC:L/Au:N/C:P/I:P"
}
}
}
}
}
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Server: clair
{
"Vulnerability": {
"Name": "CVE-2014-9471",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Link": "https://security-tracker.debian.org/tracker/CVE-2014-9471",
"Description": "The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the \"--date=TZ=\"123\"345\" @1 \" string to the touch or date command.",
"Severity": "Low",
"Metadata": {
"NVD": {
"CVSSv2": {
"Score": 7.5,
"Vectors": "AV:N/AC:L/Au:N/C:P/I:P"
}
}
}
}
}
```
2016-07-11 18:35:35 +00:00
### DELETE /namespaces/`:nsName`/vulnerabilities/`:vulnName`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The DELETE route for the Vulnerabilities resource deletes a given Vulnerability.
If this vulnerability was inserted by a Fetcher, it may be re-inserted when the Fetcher updates.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
GET http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2014-9471 HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Server: clair
```
## Fixes
2016-07-11 18:35:35 +00:00
### GET /namespaces/`:nsName`/vulnerabilities/`:vulnName`/fixes
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The GET route for the Fixes resource displays the list of Features that fix the given Vulnerability.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
GET http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2014-9471/fixes HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: clair
{
"Features": [
{
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "8.23-1"
}
]
}
```
2016-07-11 18:35:35 +00:00
### PUT /namespaces/`:nsName`/vulnerabilities/`:vulnName`/fixes/`:featureName`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The PUT route for the Fixes resource updates a Feature that is the fix for a given Vulnerability.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
2016-02-26 07:52:54 +00:00
PUT http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2014-9471/fixes/coreutils HTTP/1.1
2016-02-23 23:43:11 +00:00
{
"Feature": {
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "4.24-9"
}
}
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Server: clair
{
"Feature": {
"Name": "coreutils",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "4.24-9"
}
}
```
2016-07-11 18:35:35 +00:00
### DELETE /namespaces/`:nsName`/vulnerabilities/`:vulnName`/fixes/`:featureName`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The DELETE route for the Fixes resource removes a Feature as fix for the given Vulnerability.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
2016-02-26 07:52:54 +00:00
DELETE http://localhost:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2014-9471/fixes/coreutils
2016-02-23 23:43:11 +00:00
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Server: clair
```
## Notifications
2016-07-11 18:35:35 +00:00
### GET /notifications/`:name`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The GET route for the Notifications resource displays a notification that a Vulnerability has been updated.
This route supports simultaneous pagination for both the `Old` and `New` Vulnerabilities' `LayersIntroducingVulnerability` property which can be extremely long.
2016-07-11 18:35:35 +00:00
#### Query Parameters
2016-02-23 23:43:11 +00:00
| Name | Type | Required | Description |
|-------|--------|----------|---------------------------------------------------------------------------------------------------------------|
| page | string | optional | Displays the specific page of the "LayersIntroducingVulnerability" property on New and Old vulnerabilities. |
| limit | int | optional | Limits the amount of results in the "LayersIntroducingVulnerability" property on New and Old vulnerabilities. |
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
GET http://localhost:6060/v1/notifications/ec45ec87-bfc8-4129-a1c3-d2b82622175a?limit=2 HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: clair
{
"Notification": {
"Name": "ec45ec87-bfc8-4129-a1c3-d2b82622175a",
"Created": "1456247389",
"Notified": "1456246708",
"Limit": 2,
"Page": "gAAAAABWzJaC2JCH6Apr_R1f2EkjGdibnrKOobTcYXBWl6t0Cw6Q04ENGIymB6XlZ3Zi0bYt2c-2cXe43fvsJ7ECZhZz4P8C8F9efr_SR0HPiejzQTuG0qAzeO8klogFfFjSz2peBvgP",
"NextPage": "gAAAAABWzJaCTyr6QXP2aYsCwEZfWIkU2GkNplSMlTOhLJfiR3LorBv8QYgEIgyOvZRmHQEzJKvkI6TP2PkRczBkcD17GE89btaaKMqEX14yHDgyfQvdasW1tj3-5bBRt0esKi9ym5En",
"New": {
"Vulnerability": {
"Name": "CVE-TEST",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Description": "New CVE",
"Severity": "Low",
"FixedIn": [
{
"Name": "grep",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Version": "2.25"
}
]
},
"LayersIntroducingVulnerability": [
"3b59c795b34670618fbcace4dac7a27c5ecec156812c9e2c90d3f4be1916b12d.9673fdf7-b81a-4b3e-acf8-e551ef155449",
"523ef1d23f222195488575f52a39c729c76a8c5630c9a194139cb246fb212da6"
]
},
"Old": {
"Vulnerability": {
"Name": "CVE-TEST",
2016-03-16 18:52:32 +00:00
"NamespaceName": "debian:8",
2016-02-23 23:43:11 +00:00
"Description": "New CVE",
"Severity": "Low",
"FixedIn": []
},
"LayersIntroducingVulnerability": [
"3b59c795b34670618fbcace4dac7a27c5ecec156812c9e2c90d3f4be1916b12d.9673fdf7-b81a-4b3e-acf8-e551ef155449",
"523ef1d23f222195488575f52a39c729c76a8c5630c9a194139cb246fb212da6"
]
}
}
}
```
2016-07-11 18:35:35 +00:00
### DELETE /notifications/`:name`
2016-02-23 23:43:11 +00:00
2016-07-11 18:35:35 +00:00
#### Description
2016-02-23 23:43:11 +00:00
The delete route for the Notifications resource marks a Notification as read.
2016-02-25 18:49:24 +00:00
If a notification is not marked as read, Clair will continue to notify the provided endpoints.
2016-02-23 23:43:11 +00:00
The time at which this Notification was marked as read can be seen in the `Notified` property of the response GET route for Notification.
2016-07-11 18:35:35 +00:00
#### Example Request
2016-02-23 23:43:11 +00:00
```json
DELETE http://localhost:6060/v1/notification/ec45ec87-bfc8-4129-a1c3-d2b82622175a HTTP/1.1
```
2016-07-11 18:35:35 +00:00
#### Example Response
2016-02-23 23:43:11 +00:00
```json
HTTP/1.1 200 OK
Server: clair
```