container

package
v0.0.14 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 10, 2022 License: Apache-2.0 Imports: 18 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func NewHasUniqueTagCheck

func NewHasUniqueTagCheck(dockercfg string) *hasUniqueTagCheck

Types

type BasedOnUBICheck

type BasedOnUBICheck struct {
	LayerHashCheckEngine layerHashChecker
}

BasedOnUBICheck evaluates if the provided image is based on the Red Hat Universal Base Image.

func NewBasedOnUbiCheck

func NewBasedOnUbiCheck(layerHashChecker layerHashChecker) *BasedOnUBICheck

func (*BasedOnUBICheck) Help

func (*BasedOnUBICheck) Metadata

func (p *BasedOnUBICheck) Metadata() certification.Metadata

func (*BasedOnUBICheck) Name

func (p *BasedOnUBICheck) Name() string

func (*BasedOnUBICheck) Validate

type HasLicenseCheck

type HasLicenseCheck struct{}

HasLicenseCheck evaluates that the image contains a license definition available at /licenses.

func (*HasLicenseCheck) Help

func (*HasLicenseCheck) Metadata

func (p *HasLicenseCheck) Metadata() certification.Metadata

func (*HasLicenseCheck) Name

func (p *HasLicenseCheck) Name() string

func (*HasLicenseCheck) Validate

type HasModifiedFilesCheck

type HasModifiedFilesCheck struct{}

HasModifiedFilesCheck evaluates that no files from the base layer have been modified by subsequent layers by comparing the file list installed by Packages against the file list modified in subsequent layers.

func (HasModifiedFilesCheck) Help

func (HasModifiedFilesCheck) Metadata

func (HasModifiedFilesCheck) Name

func (p HasModifiedFilesCheck) Name() string

func (*HasModifiedFilesCheck) Validate

type HasNoProhibitedPackagesCheck

type HasNoProhibitedPackagesCheck struct{}

HasProhibitedPackages evaluates that the image does not contain prohibited packages, which refers to packages that are not redistributable without an appropriate license.

func (*HasNoProhibitedPackagesCheck) Help

func (*HasNoProhibitedPackagesCheck) Metadata

func (*HasNoProhibitedPackagesCheck) Name

func (*HasNoProhibitedPackagesCheck) Validate

type HasRequiredLabelsCheck

type HasRequiredLabelsCheck struct{}

HasRequiredLabelsCheck evaluates the image manifest to ensure that the appropriate metadata labels are present on the image asset as it exists in its current container registry.

func (*HasRequiredLabelsCheck) Help

func (*HasRequiredLabelsCheck) Metadata

func (*HasRequiredLabelsCheck) Name

func (p *HasRequiredLabelsCheck) Name() string

func (*HasRequiredLabelsCheck) Validate

type MaxLayersCheck

type MaxLayersCheck struct{}

UnderLayerMaxCheck ensures that the image has less layers in its assembly than a predefined maximum.

func (*MaxLayersCheck) Help

func (*MaxLayersCheck) Metadata

func (p *MaxLayersCheck) Metadata() certification.Metadata

func (*MaxLayersCheck) Name

func (p *MaxLayersCheck) Name() string

func (*MaxLayersCheck) Validate

func (p *MaxLayersCheck) Validate(ctx context.Context, imgRef certification.ImageReference) (bool, error)

type RunAsNonRootCheck

type RunAsNonRootCheck struct{}

RunAsNonRootCheck evaluates the image to determine that the runtime UID is not 0, which correlates to the root user.

func (*RunAsNonRootCheck) Help

func (*RunAsNonRootCheck) Metadata

func (*RunAsNonRootCheck) Name

func (p *RunAsNonRootCheck) Name() string

func (*RunAsNonRootCheck) Validate

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL