Commit Graph

134 Commits

Author SHA1 Message Date
Quentin Machu
8be18a0a01 database: write more of the notification system 2016-02-24 16:34:54 -05:00
Quentin Machu
90fe137de8 worker: move each data detector to their own packages and remove image format whitelist 2016-02-24 16:34:54 -05:00
Quentin Machu
3ecb8b69cb updater: ignore "ubuntu-core" in the Ubuntu fetcher 2016-02-24 16:34:54 -05:00
Quentin Machu
4bdbd5e6db *: fix several tests 2016-02-24 16:34:54 -05:00
Quentin Machu
8e852348a1 updater: ensure that ubuntu's notes are unique 2016-02-24 16:34:54 -05:00
Quentin Machu
d3d689a26a database: don't prune locks when we renew one 2016-02-24 16:34:54 -05:00
Quentin Machu
2690800331 database: create notification during vulnerability insertion 2016-02-24 16:34:54 -05:00
Quentin Machu
baed60e19b prometheus: add initial Prometheus support 2016-02-24 16:34:54 -05:00
Quentin Machu
ad0531acc7 notifier/database: refactor notification system and add initial Prometheus support 2016-02-24 16:34:54 -05:00
Quentin Machu
b8b7be3f81 *: remove health checker 2016-02-24 16:34:54 -05:00
Quentin Machu
63ebddfd36 database: add vulnerability deletion support 2016-02-24 16:34:54 -05:00
Quentin Machu
21f152c03e database: fix keyvalue/notification tests 2016-02-24 16:34:54 -05:00
Quentin Machu
563b3825d8 database: let handleErrors deal with the not found case 2016-02-24 16:34:54 -05:00
Quentin Machu
c60d0054fa notifier/database: draft new notification system 2016-02-24 16:34:54 -05:00
Quentin Machu
5759af5bcf database: test and fix layer updates 2016-02-24 16:34:54 -05:00
Quentin Machu
726bd3c0c6 database/api: add layer deletion support 2016-02-24 16:34:54 -05:00
Quentin Machu
248fc7df72 database: fix cache collision (feature & feature versions) 2016-02-24 16:34:54 -05:00
Quentin Machu
99de759224 updater: namespace and split Ubuntu/RHEL vulnerabilities 2016-02-24 16:34:54 -05:00
Quentin Machu
82175dcfe9 *: add missing copyright headers 2016-02-24 16:34:54 -05:00
Quentin Machu
34842fd8f7 worker: fix dpkg detector and adapt tests 2016-02-24 16:34:54 -05:00
Quentin Machu
85fa3f9a38 updater/worker: adapt several tests 2016-02-24 16:34:54 -05:00
Quentin Machu
847c649288 updater: update RHEL fetcher and add not-affected capability 2016-02-24 16:34:54 -05:00
Quentin Machu
ea59b0e45f updater: update Ubuntu fetcher and add not-affected capability 2016-02-24 16:34:54 -05:00
Quentin Machu
6e20993bac api: simplify getLayer route and JSON output 2016-02-24 16:34:54 -05:00
Quentin Machu
92b734d0a4 database: remove an useless query in FindLayer 2016-02-24 16:34:54 -05:00
Quentin Machu
bd17dfb5e1 database: ensure that concurrent vulnerability/feature versions insertions work fine 2016-02-24 16:34:54 -05:00
Quentin Machu
74fc5b3e66 database: add missing transaction commits and close opened statement before inserting feature versions. 2016-02-24 16:34:54 -05:00
Quentin Machu
c5d1a8e5f7 database: update vulnerabilities only when necessary 2016-02-24 16:34:54 -05:00
Quentin Machu
7e72eb10b6 updater: ignore Debian's "temp" vulnerabilities 2016-02-24 16:34:54 -05:00
Quentin Machu
77387af2ac updater: port updater and its fetchers 2016-02-24 16:34:54 -05:00
Quentin Machu
fd6fdbd3f9 docs: update config example 2016-02-24 16:32:21 -05:00
Quentin Machu
452f7018ec updater: move each fetcher to its own package 2016-02-24 16:32:21 -05:00
Quentin Machu
1b53142e38 database: allow removing fixed packages in vulnerabilities 2016-02-24 16:32:21 -05:00
Quentin Machu
7c70fc1c20 database: add initial vulnerability support 2016-02-24 16:32:21 -05:00
Quentin Machu
3a786ae020 database: add lock support 2016-02-24 16:32:21 -05:00
Quentin Machu
6a9cf21fd4 database: log and mask SQL errors 2016-02-24 16:32:21 -05:00
Quentin Machu
970756cd5a database: do insert/find layers (with their features and vulnerabilities) 2016-02-24 16:32:21 -05:00
Quentin Machu
2c150b015e *: refactor & do initial work towards PostgreSQL implementation 2016-02-24 16:32:21 -05:00
Quentin Machu
1a0f4a0f75 Merge pull request #75 from sjourdan/fix_vuln_typo
updater: fix typos
2016-02-23 13:42:35 -05:00
Stephane Jourdan
e91365f4b3 updater: fix typos 2016-02-23 18:07:41 +01:00
Quentin Machu
5469937a7e Merge pull request #73 from maxking/doc
docs: provide information to run Clair in README
2016-02-18 09:23:07 -05:00
Quentin Machu
5b951f3244 Merge pull request #74 from mnuessler/causedByPackage
Add output for package causing vulnerability
2016-02-18 09:22:26 -05:00
Matthias Nüßler
2300ae9ad7 Add output for package causing vulnerability
Include the name of package that caused the vulnerability in the
output.
2016-02-18 15:03:28 +01:00
Abhilash Raj
9329172683 docs: provide information to run Clair in README
The top level readme for Clair has no instructions on how-to run
Clair. Add a link pointing to the appropriate place.
2016-02-14 21:05:40 -08:00
Quentin Machu
1866821a80 Merge pull request #70 from liangchenye/read-manifest
contrib: load image history from 'manifest.json'
2016-02-14 01:20:14 -05:00
liangchenye
fee0bb5e49 contrib: load image history from 'manifest.json' first due to
docker 1.10 changes.

Fixes #69

Signed-off-by: liangchenye <liangchenye@huawei.com>
2016-02-14 14:15:07 +08:00
Quentin Machu
e8b16175ef api: return 400 if we can't extract a layer 2016-02-09 18:13:47 -05:00
Quentin Machu
343ce39865 worker: detect the status code when downloading a layer and expect 2XX. 2016-02-09 16:55:56 -05:00
Quentin Machu
6aa501f18e Merge pull request #67 from Quentin-M/master
updater: Add support for Ubuntu Vivid Core and ignore Vivid PhoneOverlay
2016-01-25 14:24:43 -05:00
Quentin Machu
712aa11b8b updater: Add support for Ubuntu Vivid Core and ignore Vivid PhoneOverlay
Reacts to https://bazaar.launchpad.net/~ubuntu-security/ubuntu-cve-tracker/master/revision/10488
2016-01-25 13:04:39 -05:00