hyperclair

command module
v0.0.0-...-dff73fa Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 4, 2016 License: MIT Imports: 1 Imported by: 0

README

hyperclair

Build Status

Tracking container vulnerabilities, that's should be Hyperclair

Tracking vulnerabilities in your container images, it's easy with CoreOS Clair. Integrate it inside your CI/CD pipeline is easier with Hyperclair.

Hyperclair is a lightweight api doing the bridge between Registries as Docker Hub, Docker Registry or Quay.io, and the CoreOS vulnerability tracker, Clair. It's easily integrated< in your CI/CD pipeline, mapping Registry events on its api, and Hyperclair will play as reverse proxy for authentication.

The Registry is a stateless, highly scalable server side application that stores and lets you distribute Docker images. The Registry is open-source, under the permissive Apache license.

From https://docs.docker.com/registry/

Clair is a container vulnerability analysis service. It provides a list of vulnerabilities that threaten a container, and can notify users when new vulnerabilities that affect existing containers become known.

From https://github.com/coreos/clair

hyperclair is tool to make the link between the Docker Registry and the CoreOS Clair tool.

hyperclair

Usage

asciicast

Notification

  1. Api: hyperclair serve run a web server to interact with the Registry and Clair. It play as Reverse Proxy for Registry Authentication
  2. On-Demand: the CLI tool is used to pull image from Registry then push it to Clair

Reporting

hyperclair get vulnerabilities report from Clair and generate HTML report

hyperclair can be used for Docker Hub and self-hosted Registry

Command

Analyse your docker image with Clair, directly from your registry.

Usage:
  hyperclair [command]

Available Commands:
  analyse     Analyse Docker image
  health      Get Health of Hyperclair and underlying services
  pull        Pull Docker image information
  push        Push Docker image to Clair
  report      Generate Docker Image vulnerabilities report
  serve       Create hyperclair Server
  version     Get Versions of Hyperclair and underlying services

Flags:
      --config string   config file (default is ./.hyperclair.yml)
  -h, --help            help for hyperclair

Use "hyperclair [command] --help" for more information about a command.

Configuration

clair:
  port: 6060
  uri: http://clair
  priority: Low
  report:
    path: reports
    format: html
auth:
  user: jgsqware
  password: jgsqware
  insecureSkipVerify: true
hyperclair:
  uri: http://hyperclair
  port: 9999

Remarks

  1. Analyzing Official Docker image is disallowed. You cannot pull layers from image you don't own.

Contribution and Test

Go to /contrib folder

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
api
reverseProxy
server
xerrors
cmd
xerrors
httpclient

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.