GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → quay → Clair

quay / Clair

Licence: apache-2.0
Vulnerability Static Analysis for Containers

Programming Languages

go
31211 projects - #10 most used programming language

Labels

dockerkubernetescontainersstatic-analysisvulnerabilitiesocioci-imageclair

Projects that are alternatives of or similar to Clair

Grype
A vulnerability scanner for container images and filesystems
Stars: ✭ 362 (-95.67%)
Mutual labels:  static-analysis, vulnerabilities, containers, oci
Buildkit
concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
Stars: ✭ 4,537 (-45.7%)
Mutual labels:  containers, oci, oci-image
Anchore Engine
A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Stars: ✭ 1,192 (-85.73%)
Mutual labels:  static-analysis, vulnerabilities, containers
Syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Stars: ✭ 196 (-97.65%)
Mutual labels:  static-analysis, containers, oci
clair-cicd
Making CoreOS' Clair easily work in CI/CD pipelines
Stars: ✭ 27 (-99.68%)
Mutual labels:  static-analysis, vulnerabilities, clair
vilicus
Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.
Stars: ✭ 82 (-99.02%)
Mutual labels:  oci, oci-image, clair
Horusec
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Stars: ✭ 311 (-96.28%)
Mutual labels:  static-analysis, vulnerabilities
Umoci
umoci modifies Open Container images
Stars: ✭ 349 (-95.82%)
Mutual labels:  containers, oci
Wssat
WEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (-95.69%)
Mutual labels:  static-analysis, vulnerabilities
Huskyci
Performing security tests inside your CI
Stars: ✭ 398 (-95.24%)
Mutual labels:  static-analysis, vulnerabilities
Cc Oci Runtime
OCI (Open Containers Initiative) compatible runtime for Intel® Architecture
Stars: ✭ 418 (-95%)
Mutual labels:  containers, oci
Crun
A fast and lightweight fully featured OCI runtime and C library for running containers
Stars: ✭ 990 (-88.15%)
Mutual labels:  containers, oci
Dockerfile
Dockerfile best-practices for writing production-worthy Docker images.
Stars: ✭ 3,506 (-58.04%)
Mutual labels:  containers, oci
oci-build-task
a Concourse task for building OCI images
Stars: ✭ 57 (-99.32%)
Mutual labels:  oci, oci-image
ctnr
rootless runc-based container engine - deprecated in favour of podman
Stars: ✭ 30 (-99.64%)
Mutual labels:  oci, oci-image
Tectonic Installer
Install a Kubernetes cluster the CoreOS Tectonic Way: HA, self-hosted, RBAC, etcd Operator, and more
Stars: ✭ 599 (-92.83%)
Mutual labels:  containers, oci
Runtime
OCI (Open Containers Initiative) compatible runtime using Virtual Machines
Stars: ✭ 588 (-92.96%)
Mutual labels:  containers, oci
Brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Stars: ✭ 6,281 (-24.83%)
Mutual labels:  static-analysis, vulnerabilities
Runv
Hypervisor-based Runtime for OCI
Stars: ✭ 798 (-90.45%)
Mutual labels:  containers, oci
ocibuilder
A tool to build OCI compliant images
Stars: ✭ 63 (-99.25%)
Mutual labels:  oci, oci-image
View All Similar Projects ➔

Clair

Docker Repository on Quay PkgGoDev IRC Channel

Note: The main branch may be in an unstable or even broken state during development. Please use releases instead of the main branch in order to get stable binaries.

Clair Logo

Clair is an open source project for the static analysis of vulnerabilities in application containers (currently including OCI and docker).

Clients use the Clair API to index their container images and can then match it against known vulnerabilities.

Our goal is to enable a more transparent view of the security of container-based infrastructure. Thus, the project was named Clair after the French term which translates to clear, bright, transparent.

The book contains all the documentation on Clair's architecture and operation.

Community

Contributing

See CONTRIBUTING for details on submitting patches and the contribution workflow.

License

Clair is under the Apache 2.0 license. See the LICENSE file for details.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].