{"id":24761038,"url":"https://github.com/ziozzang/lampas","last_synced_at":"2026-05-05T15:32:07.522Z","repository":{"id":68376419,"uuid":"120884858","full_name":"ziozzang/lampas","owner":"ziozzang","description":"\"Lampas\" is Generic Linux Package security scanning tool.(include non-docker)","archived":false,"fork":false,"pushed_at":"2018-02-22T13:13:32.000Z","size":50,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-06-03T09:18:56.784Z","etag":null,"topics":["alpine","centos","clair","clair-db","cve-scanning","debian","devops","devsecops","golang","linux","redhat","rest-api","rhel","scanner","security-audit","security-tools","security-vulnerability","ubuntu","vulnerability-detection","vulnerability-scanners"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-2-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ziozzang.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-02-09T09:22:50.000Z","updated_at":"2018-09-20T14:24:15.000Z","dependencies_parsed_at":"2023-03-21T03:18:00.236Z","dependency_job_id":null,"html_url":"https://github.com/ziozzang/lampas","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/ziozzang/lampas","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ziozzang%2Flampas","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ziozzang%2Flampas/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ziozzang%2Flampas/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ziozzang%2Flampas/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ziozzang","download_url":"https://codeload.github.com/ziozzang/lampas/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ziozzang%2Flampas/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":261462659,"owners_count":23162008,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["alpine","centos","clair","clair-db","cve-scanning","debian","devops","devsecops","golang","linux","redhat","rest-api","rhel","scanner","security-audit","security-tools","security-vulnerability","ubuntu","vulnerability-detection","vulnerability-scanners"],"created_at":"2025-01-28T18:20:42.648Z","updated_at":"2026-05-05T15:32:07.493Z","avatar_url":"https://github.com/ziozzang.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Lampas\n\n# TL;DR\nLampas is for generic linux distro package security Scanner.\n* the meaning of lampas is came from latin word 'Lampas'\n* the word is from Ancient Greek λαμπάς (lampás, “lamp or flambeau”), from λάμπω (lámpō), perhaps from Proto-Indo-European *leh₂p- (“glow”)\n\nClair Generic Scan Server (HTTP)\n\n* Lampas is renamed from \"clair-generic-scan-server\". Lampas is latin words which means lamp or lantern.\n\n* You can scan any linux system not only docker but also bare-metal.\n* Clair use newest distro's NVD/CVE database. this means clair's DB is very accurated and fastest. There's no false negative or false positive issue.\n\n* Support Linux Distro.\n    * Ubuntu / Debian\n    * Centos / Redhat / Oracle\n    * Alpine\n\n* [Clair](https://github.com/coreos/clair/) is opensource project by CoreOS(Acquired by RedHat)\n\n* welcome any pull requests.\n\n# Demo\n* Demo is checking not only Host Ubuntu system but also inside centos docker container.\n[![asciicast](https://asciinema.org/a/s0fYjJrGbtYcl2rBPocozZR0c.png)](https://asciinema.org/a/s0fYjJrGbtYcl2rBPocozZR0c)\n\n# Author\n* Jioh L. Jung \u003cziozzang@gmail.com\u003e: [linkedin.com/in/ziozzang](https://linkedin.com/in/ziozzang)\n\n# Requirements\n* Clair DB format is 2.0.1 (on Clair Public Release)\n* not working with [VMWare Harbor](https://github.com/vmware/harbor/) or other 3rd party's modified clair release.\n\n# Run\n\n* Run with docker-compose. (easist method)\n```\ncd compose\ndocker-compose up -d\n\n# wait for DB updating is complated. (maybe 10-30 min. time depend on network issue)\ndocker exec -it lampas python /opt/test.py\n\n```\n\n* You can test on bare-metal using with cli client.\n    * compatability\n        * Tested \u0026 Working: Centos7 / RHEL 7 / Debian 8,9 / Ubuntu 14.04 or above / Alpine\n        * Not working: Centos 6 / RHEL 6 / Debian 7\n    * Python version: python \u0026 requests module are required.\n    * Golang version: Static compiled binary does not need any requirements.\n```\n# Python version\npython ./cli/scanner.py http://127.0.0.1:5000\n\n# Golang version\n# - Build Binary\n docker run -it --rm \\\n  -v `pwd`/cli:/usr/src/scanner \\\n  -w /usr/src/scanner \\\n  -e \"CGO_ENABLED=0\" -e \"GOOS=linux\" \\\n  golang bash -c  \\\n  \"go get github.com/Jeffail/gabs \u0026\u0026 go get github.com/go-ini/ini \u0026\u0026 go build -a -ldflags '-extldflags \\\"-static\\\"' .\"\n\n# or you can use build scripts\n  cd cli\n  curl https://raw.githubusercontent.com/ziozzang/go-static-template/master/install | bash\n  BIN_NAME=scanner ./build.sh\n\n# - Run\n./cli/scanner http://127.0.0.1:5000\n\n```\n\n\n\n* Environments Parameters\n    * not yet documented\n\n\n# API\n\nnot yet documented.\n\n# Build\n\n```\ndocker build -t ziozzang/clair-generic-scan-server .\ndocker run -it --rm  -p 5000:5000 --link pgsql:pgsql ziozzang/clair-generic-scan-server\n\n```\n\n# Known Issue\n* if no database updated, server return 500.\n* no error processing\n* no web ui.\n\n# TO-Do\n\n* Documents\n* API\n\n# License\n* BSD.\n* You can use any purpose.\n\n\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fziozzang%2Flampas","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fziozzang%2Flampas","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fziozzang%2Flampas/lists"}