Clair
Definition
Clair is an open-source project for the static analysis of vulnerabilities in application containers. It is designed to scan container images and report on known vulnerabilities in the software packages they contain. Clair integrates with container registries and CI/CD pipelines to provide continuous security assessments, helping to identify and mitigate risks before deployment.
Secure Settings Example
clair:
database:
type: "pgsql"
options:
source: "host=localhost port=5432 user=clair dbname=clair sslmode=disable"
updater:
interval: 1h
notifier:
attempts: 3
renotify_interval: 1h
api:
port: 6060
health_port: 6061
timeout: 900s
Insecure Settings Example
clair:
database:
type: "pgsql"
options:
source: "host=localhost port=5432 user=clair dbname=clair sslmode=disable"
updater:
interval: 24h
notifier:
attempts: 1
renotify_interval: 24h
api:
port: 6060
health_port: 6061
timeout: 3600s