arno/clair
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
571 Commits 5 Branches 24 Tags 158 MiB
aa5729df66
Commit Graph

37 Commits

Author SHA1 Message Date
Jimmy Zelinskie
aa5729df66
Merge pull request #530 from meringu/patch-1 
Proxy for 2.0
 2018-07-05 21:38:44 -04:00
Henry Muru Paenga
a80ca551cf imgfmt: download using http proxy from env 2018-07-06 10:28:43 +09:00
Jean Michel MacKay
af7d890865 Moved the ubuntu updater to use the new git repo of cve-tracker, replacing bzr 
* removed bzr from Dockerfile
* removed bzr from required binaries
* removed bzr from README.md
 2018-07-05 19:36:39 -04:00
Jimmy Zelinskie
8bea33576d
Merge pull request #562 from ninjaMog/ubuntu-tracker-update 
ext/vulnsrc/ubuntu: updated tracker src
 2018-07-03 17:19:19 -04:00
Nick Johns
086f92a617 /ext/vulnmdsrc/nvd Switched NVD URLs to https 
NVD Stopped serving traffic on http endpoints.  Updated to https

Fixes #515
 2018-06-29 15:57:01 +01:00
Nick Johns
d1cadb4cdc ext/vulnsrc/ubuntu: updated tracker src 
The existing address had been switched from bzr to git. Changed address to location of current bzr master

Fixes #524
 2018-06-27 15:35:59 +01:00
Joe Ray
e650d58583
featurens: Ensure RHEL is correctly identified 
When trying to identify various RedHat releases, RHEL was not being
picked up as a centos release because the Oracle Linux regex was too
permissive: it would match any release name with '<something> Linux
Server release' in the name. By being more restrictive with the Oracle
regex, RHEL is now properly identified.

I don't know why the Oracle regex used such a permissive matcher for the
name but it still passes all the tests by replacing it with the word
'Oracle'.

Fixes #436
 2018-03-16 16:41:28 -04:00
Jimmy Zelinskie
2453d67c36 Merge pull request #413 from transcedentalia/master 
Fixing the always database revision 0 for Ubuntu
 2017-06-19 13:10:36 -04:00
Jimmy Zelinskie
f2f213470b Merge pull request #395 from knqyf263/handle_tilde 
versionfmt/rpm: handle a tilde correctly
 2017-05-15 14:52:31 -04:00
knqyf263
db8a133d21 versionfmt/rpm: handle a tilde correctly 2017-05-14 19:18:57 +09:00
Jimmy Zelinskie
0891bbac00 ext/vulnsrc/alpine: use HTTPS 2017-05-11 15:18:37 -04:00
Sida Chen
9306e99368 converted to structured logging by using logrus 
changed from capnslog to logrus for logging JSON structured message.

finished issue #383
 2017-05-04 13:59:57 -04:00
Jimmy Zelinskie
09cbfe325b ext/vulnsrc/oracle: ensure flag is largest elsa 
If the Oracle Linux directory is ever in the wrong order, this should
ensure that the updaterFlag is always set the latest ELSA value.
 2017-04-27 18:57:19 -04:00
Jimmy Zelinskie
34bc722794 ext/featurens: add empty filesmap tests for all 2017-04-21 15:08:47 -04:00
Jimmy Zelinskie
bcf47f53ee ext/vulnsrc/oracle: fix ELSA version comparison 
Previously we naively compared integers. However, not all versions have
the same length.
 2017-04-19 15:15:41 -04:00
Jimmy Zelinskie
b2f2b2c854 ext/featurefmt/apk: handle malformed packages 2017-04-11 15:48:27 -04:00
Jimmy Zelinskie
590e7e2602 ext/featurefmt/dpkg: handle malformed packages 2017-04-11 15:48:27 -04:00
Jimmy Zelinskie
300fe980ef ext/vulnsrc/ubuntu: add missing version format 2017-03-01 01:12:27 -05:00
supereagle
3f51191d23 configurable for TLS server's certificate chain and hostname verification when pulling layers 2017-02-26 07:30:23 +08:00
Quentin Machu
d606d85afe
ext/vulnsrc/rhel: fix logging namespace 2017-02-22 10:50:42 -08:00
Jimmy Zelinskie
1e9f14ae33 versionfmt/dpkg: remove leading digit requirement 
This is not strictly a requirement and affects some tracked Alpine Linux
packages.
 2017-02-07 13:31:28 -08:00
Jimmy Zelinskie
c8622d5f34 vulnsrc/alpine: unify schema and parse v3.5 
HEAD of Alpine SecDB now uses one consistent schema for all of their
vulnerabilities, so the logic around parsing different versions can now
be removed. This change also crawls the directory structure to parse all
files due to the addition of community.yaml tracking community Alpine
Linux packages.
 2017-02-07 13:31:28 -08:00
Jimmy Zelinskie
6a569fd945 move config to main / decentralize config 
This puts config in its relevant location and moves functions around
loading config files into the main package.

As a side effect of removing cyclic imports for the API config, the
context library is no longer used.
 2017-01-27 00:36:13 -05:00
Jimmy Zelinskie
9c63a63944 clair: mv updater clair and mv severity to db 2017-01-22 23:20:56 -05:00
Jimmy Zelinskie
c2f4a44068 utils: rm exec.go 
This change also adds a dependency check at startup, rather than
runtime.
 2017-01-22 23:02:51 -05:00
Jimmy Zelinskie
343e24eb7e clair: remove types package 
This removes the `types` package instead moving the contents to the
top-level clair package.
This change also renames the `Priority` type to `Severity` in order to
reduce confusion.
This change also removes the IsValid method and replaces it with a safe
constructor to avoid the creation of invalid values.
Many docstrings were tweaked in the making of this commit.
 2017-01-22 23:02:51 -05:00
Jimmy Zelinskie
03b8cd9a45 ext/featurens: add missing lock 2017-01-22 23:02:51 -05:00
Jimmy Zelinskie
cda3d4819c ext: feature detector -> featurefmt 2017-01-22 23:02:51 -05:00
Jimmy Zelinskie
71a8b542f9 ext: misc doc comment fixes 2017-01-22 23:02:50 -05:00
Jimmy Zelinskie
fb193e1fde ext: namespace detector -> featurens 2017-01-22 23:02:50 -05:00
Jimmy Zelinskie
d9be34c3c4 ext: data detector -> imagefmt 2017-01-22 23:02:50 -05:00
Jimmy Zelinskie
f9b319089d ext: lock all drivers 2017-01-22 23:02:50 -05:00
Jimmy Zelinskie
78cef02fda pkg: cerrors -> commonerr 2017-01-22 23:02:50 -05:00
Jimmy Zelinskie
4a990372ff refactor: move updaters and notifier into ext 2017-01-22 23:02:50 -05:00
Jimmy Zelinskie
8d29bf860d versionfmt: convert to using constant over literal 2017-01-03 16:00:20 -05:00
Jimmy Zelinskie
6864a8efea versionfmt: init rpm versionfmt 2016-12-30 12:51:25 -05:00
Jimmy Zelinskie
033709eaea add registerable version formats 
Since we only ever used dpkg, this change shims everything into using
dpkg.
 2016-12-30 12:51:24 -05:00