Documentation
¶
Overview ¶
Package rhcc implements an ecosystem for the Red Hat Container Catalog.
This ecosystem treats an entire container as a package and matches advisories against it.
Index ¶
Constants ¶
const DefaultName2ReposMappingURL = "https://access.redhat.com/security/data/metrics/container-name-repos-map.json"
DefaultName2ReposMappingURL is the default URL with a mapping file provided by Red Hat.
Variables ¶
var Matcher driver.Matcher = &matcher{}
Matcher is an instance of the rhcc matcher. It's exported so it can be used in the "defaults" package.
This instance is safe for concurrent use.
Functions ¶
func NewEcosystem ¶
NewEcosystem returns an rhcc ecosystem.
func UpdaterSet ¶
func UpdaterSet(_ context.Context) (driver.UpdaterSet, error)
UpdaterSet returns the rhcc UpdaterSet.
Types ¶
type ScannerConfig ¶
type ScannerConfig struct {
// Name2ReposMappingURL is a URL where a mapping file can be fetched.
//
// See also [DefaultName2ReposMappingURL]
Name2ReposMappingURL string `json:"name2repos_mapping_url" yaml:"name2repos_mapping_url"`
// Name2ReposMappingFile is a path to a local mapping file.
Name2ReposMappingFile string `json:"name2repos_mapping_file" yaml:"name2repos_mapping_file"`
// Timeout is a timeout for all network calls made to update the mapping
// file.
//
// The default is 10 seconds.
Timeout time.Duration `json:"timeout" yaml:"timeout"`
}
ScannerConfig is the configuration for the package scanner.
The interaction between the "URL" and "File" members is the same as described in the github.com/vishnuchalla/claircore/rhel.RepositoryScannerConfig documentation.
By convention, it's in a "rhel_containerscanner" key.
type UpdaterConfig ¶
type UpdaterConfig struct {
// URL is the URL to a "cvemap.xml" file.
//
// The Updater's configuration hook will check for a version with an
// additional ".bz2" extension.
URL string `json:"url" yaml:"url"`
}
UpdaterConfig is the configuration for the container catalog's updater.
By convention, this is in a "rhel-container-updater" key.
Source Files