arno/clair
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
922 Commits 5 Branches 24 Tags 158 MiB
master
Commit Graph

922 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrey Arapov
0085d3e042
update readme
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-05-11 17:44:19 +02:00
Andrey Arapov
0e5c4b6445
add Drone CI 2019-05-11 17:41:55 +02:00
Jimmy Zelinskie
d0bd4c7ab8
Merge pull request #773 from flumm/disco 
add disco to namespace mappings for ubuntu
 2019-04-30 09:24:45 -04:00
Dominik Csapak
e08fe792ef add disco to namespace mappings for ubuntu 
otherwise those vulnerabilities do not reach the database
 2019-04-26 08:23:47 +02:00
Jimmy Zelinskie
5fef44dd04
Merge pull request #671 from ericysim/amazon 
Add updaters for Amazon Linux 2018.03 and Amazon Linux 2
 2019-04-24 14:11:10 -04:00
Eric Sim
32cd4f1ec3 Add Amazon Linux to drivers and data sources doc 2019-04-23 10:38:48 -07:00
Eric Sim
6617f560cc database: Rename affected type to feature type (for Amazon Linux updater) 2019-04-11 13:26:14 -07:00
Eric Sim
adde75975f Fix style issues 2019-04-11 13:26:14 -07:00
Eric Sim
684ae2be1d Refactoring (minor) 2019-04-11 13:26:14 -07:00
Eric Sim
8e98ee878a Add 2xx checks for mirror.list and repomd.xml 2019-04-11 13:26:13 -07:00
Eric Sim
803cf4a29e gofmt 2019-04-11 13:26:13 -07:00
Eric Sim
8fb9097dbd Add updaters for Amazon Linux 2018.03 and Amazon Linux 2 
We get vulnerabilities from ALAS (Amazon Linux Security Advisories) data, which can be found in updateinfo.xml from the repos.
 2019-04-11 13:26:13 -07:00
Jimmy Zelinskie
d79827690c
Merge pull request #766 from Allda/lock_timeout 
Fix: lock updater - return correct bool value
 2019-04-11 13:44:10 -04:00
Ales Raszka
4e49aaf346 Fix: lock updater - return correct bool value 
The function which extend lock duration in DB returns incorrect bool
value (return default false value). This cause that context is canceled
when extending lock duration and whole update process fails.

This commit fixes the bug and return correct bool value.
 2019-04-09 14:41:40 +02:00
Jimmy Zelinskie
3316e7e1ef
Merge pull request #742 from bluelabsio/path-templating 
set / as default path but allow for individual configuration in values.yml
 2019-03-26 14:28:44 -04:00
Jimmy Zelinskie
e8bd0c4f78
Merge pull request #739 from joelee2012/master 
Add claircli tool to interact with clair
 2019-03-26 14:25:19 -04:00
Jimmy Zelinskie
4af5afe305
Merge pull request #749 from cnorthwood/tarutil-glob 
tarutil: allow file names to be specified by regexp
 2019-03-22 13:15:57 -04:00
Chris Northwood
a3a37072b5 tarutil: convert all filename specs to regexps 
This removes the previous behaviour from tarutil to do simple prefix matching.
All places where the previous prefix-based matches were specified have been
updated to use a regexp instead, maintaining previous behaviour.
 2019-03-22 11:02:21 +00:00
Chris Northwood
afd7fe2554 tarutil: allow file names to be specified by regexp 
Some features do not exist in set locations, but can be anywhere in the layer.
This allows those featurefmt to specify the filenames to be scanned by
regexp, as opposed to purely by path prefix.
If any current users of this express paths which use regexp special characters
this could be a breaking change for them (with the exception of . which will
continue to work as it matches against the literal character .), however
none of the code in this repo does that.

fixes #456
 2019-03-21 17:24:34 +00:00
Sida Chen
1234a8d2f0
Merge pull request #741 from KeyboardNerd/parallel_download 
v3: Analyze layer content in parallel
 2019-03-20 12:50:15 -04:00
Sida Chen
098cb2ef2c
Merge pull request #738 from Allda/potentialNamespaceAncestry 
Use PotentialNamespace in ancestry
 2019-03-20 12:47:34 -04:00
Kate Hill
710c65530f helm: allow for ingress path configuration in values.yml 2019-03-20 12:42:17 -04:00
Sida Chen
88f506918b v3: Analyze layer content in parallel 2019-03-20 12:04:14 -04:00
Ales Raszka
f2ce8325b9 Convert: return nil when detector is empty 
When PotentialNamespace is used detector is empty and
DetectorFromDatabaseModel() should return nil instead of empty object.
 2019-03-20 16:00:46 +01:00
Li Joe
3f13184ad6 Add claircli tool to interact with clair 2019-03-20 03:19:23 +00:00
Ales Raszka
f326b6f664 Use PotentialNamespace in ancestry 
If PotentialNamespace is available for given feature it is used instead
of detector namespace. Detector is empty in such a case.
 2019-03-14 17:29:41 +01:00
Sida Chen
2c7838eac7
Merge pull request #721 from KeyboardNerd/cache 
Restructure database folder
 2019-03-13 16:56:28 -04:00
Sida Chen
2d1ac2c4d5 update 2019-03-12 22:23:30 -04:00
Sida Chen
0731df972c pgsql: Remove unused test code 
- Tests in complex_test.go are now in corresponding test files.
- Pgsql_test is partially moved to testutil/testdb.go
 2019-03-12 22:23:30 -04:00
Sida Chen
dfa07f6d86 pgsql: Move notification to its module 2019-03-12 22:23:30 -04:00
Sida Chen
921acb26fe pgsql: Split vulnerability.go to files in vulnerability module 2019-03-12 22:23:30 -04:00
Sida Chen
7cc83ccbc5 pgsql: Split ancestry.go to files in ancestry module 2019-03-12 22:23:30 -04:00
Sida Chen
497b79a293 pgsql: Add test for migrations 2019-03-12 22:23:30 -04:00
Sida Chen
ea418cffd4 pgsql: Split layer.go to files in layer module 2019-03-12 22:23:30 -04:00
Sida Chen
176c69e59d pgsql: Move namespace to its module 2019-03-12 22:23:30 -04:00
Sida Chen
98e81ff5f1 pgsql: Move keyvalue to keyvalue module 2019-03-12 22:23:30 -04:00
Sida Chen
ba50d7c626 pgsql: Move lock to lock module 2019-03-12 22:23:30 -04:00
Sida Chen
0b32b36cf7 pgsql: Move detector to pgsql/detector module 2019-03-12 22:23:30 -04:00
Sida Chen
c50a2339b7 pgsql: Split feature.go to table based files in feature module 2019-03-12 22:23:30 -04:00
Sida Chen
43f3ea87d8 pgsql: Move batch queries to corresponding modules 2019-03-12 22:23:30 -04:00
Sida Chen
a33050637b pgsql: Move extra logic in pgsql.go to util folder 
- pgsql/util/error.go contains error handling logic
- pgsql/page/page.go contains the page struct
- pgsql/monitoring contains the prometheus logic
- pgsql/pgsession contains the pgsession struct
 2019-03-12 22:23:30 -04:00
Sida Chen
8bebea3643 pgsql: Split testutil.go into multiple files 
- assertion.go assertions used in pgsql tests
- data.go contains go representation of data.sql
- testdb.go contains test db/tx creation logic
- testutil.go contains misc other things
 2019-03-12 22:23:30 -04:00
Sida Chen
3fafb73c4f database: Split models.go into different files each contains one model 2019-03-12 21:55:26 -04:00
Jimmy Zelinskie
a2d6508730
Merge pull request #735 from jzelinskie/fix-sweet32 
pkg/grpcutil: use cockroachdb cipher suite
 2019-03-08 14:49:56 -05:00
Jimmy Zelinskie
c4a32543e8 pkg/grpcutil: use cockroachdb cipher suite 2019-03-08 14:37:43 -05:00
Sida Chen
a689f1f1dc
Merge pull request #722 from Allda/feature_ns 
featuturefmt: Extract PotentialNamespace
 2019-03-08 13:10:00 -05:00
Ales Raszka
d77dc0f0ae Use struct as a map key instead of string 
String was used when Feature contains PotentialNamespace. Since it was
moved to LayerFeature we can use struct as map key instead of string.
 2019-03-08 09:51:40 +01:00
Ales Raszka
a8a91379d9 Add test for potential namespace 
Test verifies that potential namespace is stored in database and it can
be loaded back to structure.

The commit also fixes few typos and bugs.
 2019-03-08 09:51:19 +01:00
Ales Raszka
60b0bd27fa Add namespace_id as constraints to layer_feature 
If layer contains more than one potential namespace, features will be
created for each namespace. Layer_feature table now has to contains one
more constrains (namespace_id).
 2019-03-07 11:22:54 +01:00
Ales Raszka
60ef726677 Move PotentialNamespace to LayerFeature 
PotentialNamespace should be in LayerFeature instead of Feature struct.
Feature extractors were updated to return LayerFeature instead of
Feature.
 2019-03-07 11:22:54 +01:00