https://github.com/aboutsource/quayio-scanner
Quayio Scanner translates critical vulnerabilities in running docker containers into Sensu check results to transform vulnerability scans into actionable alerts.
https://github.com/aboutsource/quayio-scanner
docker quayio ruby sensu vulnerability-management
Last synced: 4 months ago
JSON representation
Quayio Scanner translates critical vulnerabilities in running docker containers into Sensu check results to transform vulnerability scans into actionable alerts.
- Host: GitHub
- URL: https://github.com/aboutsource/quayio-scanner
- Owner: aboutsource
- License: mit
- Created: 2017-07-31T10:32:41.000Z (almost 9 years ago)
- Default Branch: master
- Last Pushed: 2025-02-10T13:14:05.000Z (over 1 year ago)
- Last Synced: 2026-02-21T04:35:11.695Z (4 months ago)
- Topics: docker, quayio, ruby, sensu, vulnerability-management
- Language: Ruby
- Homepage:
- Size: 59.6 KB
- Stars: 1
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.txt
Awesome Lists containing this project
README
# Quayio::Scanner
Quayio Scanner translates critical vulnerabilities in running docker containers
into Sensu check results to transform vulnerability scans into actionable alerts.
## Installation
Add this line to your application's Gemfile:
```ruby
gem 'quayio-scanner'
```
And then execute:
$ bundle
Or install it yourself as:
$ gem install quayio-scanner
## USAGE
This plugin attempts to fetch vulnerabilities for all running containers
### Parameters
| Parameter | Description |
|--------------------------|-----------------------------------------|
| -d URL | Docker URL |
| -t TOKEN | Quay.io oauth token |
| -w WHITELIST[,WHITELIST] | Vulnerability whitelist |
| -n NAMESPACE[,NAMESPACE] | Namespaces (quay.io scanners) to ignore |
### Example
$ check-container-vulnerabilities.rb --docker-url unix:///var/run/docker.sock --quayio-token AccessTokenGoesHere
## Contributing
Bug reports and pull requests are welcome on GitHub at https://github.com/aboutsource/quayio-scanner.
## License
The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
### json
Copyright 2019 - present [Florian Frank](mailto:flori@ping.de) - The gem [json](https://github.com/flori/json/) is distributed under the [Ruby License](LICENSE/json/LICENSE.txt).
## Security
- [Snyk](https://app.snyk.io/org/about-source/project/6eb2d381-87e7-49c4-a47f-ccad97f33ae3)