https://github.com/aboutsource/quayio-scanner

Quayio Scanner translates critical vulnerabilities in running docker containers into Sensu check results to transform vulnerability scans into actionable alerts.
https://github.com/aboutsource/quayio-scanner

docker quayio ruby sensu vulnerability-management

Last synced: 4 months ago
JSON representation

Quayio Scanner translates critical vulnerabilities in running docker containers into Sensu check results to transform vulnerability scans into actionable alerts.

• Host: GitHub
• URL: https://github.com/aboutsource/quayio-scanner
• Owner: aboutsource
• License: mit
• Created: 2017-07-31T10:32:41.000Z (almost 9 years ago)
• Default Branch: master
• Last Pushed: 2025-02-10T13:14:05.000Z (over 1 year ago)
• Last Synced: 2026-02-21T04:35:11.695Z (4 months ago)
• Topics: docker, quayio, ruby, sensu, vulnerability-management
• Language: Ruby
• Homepage:
• Size: 59.6 KB
• Stars: 1
• Watchers: 3
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.txt

Awesome Lists containing this project

README

          
# Quayio::Scanner

Quayio Scanner translates critical vulnerabilities in running docker containers

into Sensu check results to transform vulnerability scans into actionable alerts.

## Installation

Add this line to your application's Gemfile:

```ruby

gem 'quayio-scanner'

```

And then execute:

    $ bundle

Or install it yourself as:

    $ gem install quayio-scanner

## USAGE

This plugin attempts to fetch vulnerabilities for all running containers

### Parameters

| Parameter                | Description                             |

|--------------------------|-----------------------------------------|

| -d URL                   | Docker URL                              |

| -t TOKEN                 | Quay.io oauth token                     |

| -w WHITELIST[,WHITELIST] | Vulnerability whitelist                 |

| -n NAMESPACE[,NAMESPACE] | Namespaces (quay.io scanners) to ignore |

### Example

    $ check-container-vulnerabilities.rb --docker-url unix:///var/run/docker.sock --quayio-token AccessTokenGoesHere

## Contributing

Bug reports and pull requests are welcome on GitHub at https://github.com/aboutsource/quayio-scanner.

## License

The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).

### json

Copyright 2019 - present [Florian Frank](mailto:flori@ping.de) - The gem [json](https://github.com/flori/json/) is distributed under the [Ruby License](LICENSE/json/LICENSE.txt).

## Security

- [Snyk](https://app.snyk.io/org/about-source/project/6eb2d381-87e7-49c4-a47f-ccad97f33ae3)