Quentin Machu
ea59b0e45f
updater: update Ubuntu fetcher and add not-affected capability
2016-02-24 16:34:54 -05:00
Quentin Machu
6e20993bac
api: simplify getLayer route and JSON output
2016-02-24 16:34:54 -05:00
Quentin Machu
92b734d0a4
database: remove an useless query in FindLayer
2016-02-24 16:34:54 -05:00
Quentin Machu
bd17dfb5e1
database: ensure that concurrent vulnerability/feature versions insertions work fine
2016-02-24 16:34:54 -05:00
Quentin Machu
74fc5b3e66
database: add missing transaction commits and close opened statement before inserting feature versions.
2016-02-24 16:34:54 -05:00
Quentin Machu
c5d1a8e5f7
database: update vulnerabilities only when necessary
2016-02-24 16:34:54 -05:00
Quentin Machu
7e72eb10b6
updater: ignore Debian's "temp" vulnerabilities
2016-02-24 16:34:54 -05:00
Quentin Machu
77387af2ac
updater: port updater and its fetchers
2016-02-24 16:34:54 -05:00
Quentin Machu
fd6fdbd3f9
docs: update config example
2016-02-24 16:32:21 -05:00
Quentin Machu
452f7018ec
updater: move each fetcher to its own package
2016-02-24 16:32:21 -05:00
Quentin Machu
1b53142e38
database: allow removing fixed packages in vulnerabilities
2016-02-24 16:32:21 -05:00
Quentin Machu
7c70fc1c20
database: add initial vulnerability support
2016-02-24 16:32:21 -05:00
Quentin Machu
3a786ae020
database: add lock support
2016-02-24 16:32:21 -05:00
Quentin Machu
6a9cf21fd4
database: log and mask SQL errors
2016-02-24 16:32:21 -05:00
Quentin Machu
970756cd5a
database: do insert/find layers (with their features and vulnerabilities)
2016-02-24 16:32:21 -05:00
Quentin Machu
2c150b015e
*: refactor & do initial work towards PostgreSQL implementation
2016-02-24 16:32:21 -05:00
Quentin Machu
1a0f4a0f75
Merge pull request #75 from sjourdan/fix_vuln_typo
...
updater: fix typos
2016-02-23 13:42:35 -05:00
Stephane Jourdan
e91365f4b3
updater: fix typos
2016-02-23 18:07:41 +01:00
Quentin Machu
5469937a7e
Merge pull request #73 from maxking/doc
...
docs: provide information to run Clair in README
2016-02-18 09:23:07 -05:00
Quentin Machu
5b951f3244
Merge pull request #74 from mnuessler/causedByPackage
...
Add output for package causing vulnerability
2016-02-18 09:22:26 -05:00
Matthias Nüßler
2300ae9ad7
Add output for package causing vulnerability
...
Include the name of package that caused the vulnerability in the
output.
2016-02-18 15:03:28 +01:00
Abhilash Raj
9329172683
docs: provide information to run Clair in README
...
The top level readme for Clair has no instructions on how-to run
Clair. Add a link pointing to the appropriate place.
2016-02-14 21:05:40 -08:00
Quentin Machu
1866821a80
Merge pull request #70 from liangchenye/read-manifest
...
contrib: load image history from 'manifest.json'
2016-02-14 01:20:14 -05:00
liangchenye
fee0bb5e49
contrib: load image history from 'manifest.json' first due to
...
docker 1.10 changes.
Fixes #69
Signed-off-by: liangchenye <liangchenye@huawei.com>
2016-02-14 14:15:07 +08:00
Quentin Machu
e8b16175ef
api: return 400 if we can't extract a layer
2016-02-09 18:13:47 -05:00
Quentin Machu
343ce39865
worker: detect the status code when downloading a layer and expect 2XX.
2016-02-09 16:55:56 -05:00
Quentin Machu
6aa501f18e
Merge pull request #67 from Quentin-M/master
...
updater: Add support for Ubuntu Vivid Core and ignore Vivid PhoneOverlay
2016-01-25 14:24:43 -05:00
Quentin Machu
712aa11b8b
updater: Add support for Ubuntu Vivid Core and ignore Vivid PhoneOverlay
...
Reacts to https://bazaar.launchpad.net/~ubuntu-security/ubuntu-cve-tracker/master/revision/10488
2016-01-25 13:04:39 -05:00
Quentin Machu
7b608ceda5
docs: Add missing field in API Example
2016-01-21 11:27:48 -05:00
Quentin Machu
e650eab638
Merge pull request #65 from jzelinskie/fixdockerfile
...
dockerfile: syntax updates and s/xz/xz-utils
2016-01-19 13:38:25 -05:00
Jimmy Zelinskie
ea193d3ae7
dockerfile: syntax updates and s/xz/xz-utils
...
This fixes the automated build on Quay.io.
2016-01-19 13:35:27 -05:00
Quentin Machu
e834301941
Merge pull request #49 from liangchenye/master
...
Add DataDetector to support ACI and other layout format
2016-01-07 10:44:40 -05:00
Quentin Machu
4dc9ea39dd
Merge pull request #59 from davidxia/patch1
...
Fix typo in doc
2016-01-04 17:22:30 -05:00
David Xia
f2009513d5
Fix typo in doc
2016-01-04 13:14:12 -05:00
Quentin Machu
11475beb2c
Merge pull request #52 from Quentin-M/custom_notifiers
...
Custom notifiers
2015-12-17 18:23:25 -05:00
Quentin Machu
f4a4d417e7
notifier: Rename HTTP to Webhook Notifier
2015-12-17 17:36:12 -05:00
Quentin Machu
2ea86c53f3
notifier: fix a bug that prevented graceful shutdown in certain cases
...
- The notifier was never checking if it should shutdown if there were always at least one notification to send
- After a failure, the notifier is supposed to back-off, but when Clair is stopping, the backoff was interrupted immediately and did not retry. Instead it selected a new notification to send (most likely: the same one) and looped quickly/weirdly.
2015-12-17 17:36:12 -05:00
Quentin Machu
480589a83a
notifier: retry upon failure
2015-12-17 17:36:12 -05:00
Quentin Machu
3ff8bfaa93
notifier: Allow custom notifiers to be registered.
2015-12-16 16:08:35 -05:00
Quentin Machu
7ee1481e92
Merge pull request #53 from coreos/ubdater
...
updater: Fix Ubuntu's partial update bug.
2015-12-16 15:46:54 -05:00
Quentin Machu
c055c33cf8
updater: Fix Ubuntu's partial update bug.
...
Deferring file closing causes `too many open files` (exceeding fs.file-max) on some platforms!
2015-12-16 15:42:32 -05:00
Quentin Machu
510b901da6
Merge pull request #46 from coreos/fix_sql_tovalue
...
database: Fix incorrect behavior of toValue when reading empty strings.
2015-12-16 15:09:31 -05:00
Quentin Machu
8c1d3c9a86
*: Fix authentification
typo
2015-12-16 12:01:51 -05:00
Liang Chenye
4b11491067
add ImageFormat to worker_test and programs under contrib
...
Signed-off-by: Liang Chenye <liangchenye@huawei.com>
2015-12-15 21:01:22 -08:00
Liang Chenye
41509ccd3e
add imageFormt to API.md; add xz to Dockerfile; fix bugs
...
Signed-off-by: Liang Chenye <liangchenye@huawei.com>
2015-12-15 20:29:53 -08:00
Quentin Machu
32747a5f25
database: Don't ignore empty results in toValue(s)()
...
There is apparently no reason to ignore empty results - it was probably the case in the past (`null` value).
["", "v"] should be considered invalid by toValue() because it represents two values.
["", "v"] should be returned as it by toValues(), not trimming "".
Tests passes, it will hopefully not cause any issue in prod.
2015-12-15 15:20:38 -05:00
Quentin Machu
172693b604
Merge pull request #47 from coreos/sn
...
notifier: add ServerName configuration for TLS
2015-12-15 14:31:59 -05:00
Jimmy Zelinskie
34870a2a2b
move LoadTLSClientConfigForServer into API package
...
This isn't reused any where just yet, so we're best off leaving it local
to the place that needs it.
2015-12-15 12:09:46 -05:00
Jimmy Zelinskie
b3828c9c4c
notifier: add ServerName configuration for TLS
2015-12-15 12:09:46 -05:00
liangchenye
8b649af666
detect bzip2/xz; add test data
...
Signed-off-by: liangchenye <liangchenye@huawei.com>
2015-12-15 16:08:27 +08:00