Affected by GO-2022-0785 and 5 other vulnerabilities

GO-2022-0785: "catalog's registry v2 api exposed on unauthenticated path in Harbor" in github.com/goharbor/harbor

GO-2022-0865: Authenticated users can exploit an enumeration vulnerability in Harbor in github.com/goharbor/harbor

GO-2023-2109: Harbor timing attack risk in github.com/goharbor/harbor

GO-2024-2915: Open Redirect URL in Harbor in github.com/goharbor/harbor

GO-2024-2916: SQL Injection in Harbor scan log API in github.com/goharbor/harbor

GO-2024-3013: Harbor fails to validate the user permissions when updating project configurations in github.com/goharbor/harbor

scan

package

v1.6.0 Latest Latest Go to latest Published: Sep 7, 2018 License: Apache-2.0 Imports: 14 Imported by: 30

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

This section is empty.

This section is empty.

type ClairJob struct {
	// contains filtered or unexported fields
}

ClairJob is the struct to scan Harbor's Image with Clair

func (cj *ClairJob) MaxFails() uint

MaxFails implements the interface in job/Interface

func (cj *ClairJob) Run(ctx env.JobContext, params map[string]interface{}) error

Run implements the interface in job/Interface

func (cj *ClairJob) ShouldRetry() bool

ShouldRetry implements the interface in job/Interface

func (cj *ClairJob) Validate(params map[string]interface{}) error

Validate implements the interface in job/Interface