https://github.com/coreos/clair
Vulnerability Static Analysis for Containers
https://github.com/coreos/clair
clair containers docker go kubernetes oci oci-image static-analysis vulnerabilities
Last synced: 22 days ago
JSON representation
Vulnerability Static Analysis for Containers
- Host: GitHub
- URL: https://github.com/coreos/clair
- Owner: quay
- License: apache-2.0
- Created: 2015-11-13T18:46:16.000Z (over 9 years ago)
- Default Branch: main
- Last Pushed: 2025-03-19T15:23:04.000Z (26 days ago)
- Last Synced: 2025-03-23T09:04:56.335Z (22 days ago)
- Topics: clair, containers, docker, go, kubernetes, oci, oci-image, static-analysis, vulnerabilities
- Language: Go
- Homepage: https://quay.github.io/clair/
- Size: 34.2 MB
- Stars: 10,550
- Watchers: 228
- Forks: 1,179
- Open Issues: 31
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: .github/CONTRIBUTING.md
- License: LICENSE
- Code of conduct: code-of-conduct.md
- Codeowners: CODEOWNERS
- Roadmap: ROADMAP.md
Awesome Lists containing this project
- awesome-list-docker - clair
- awesome-cybersecurity-blueteam-cn - Clair - 静态分析工具,用于探测应用容器镜像(e.g. Docker)中的漏洞 (DevSecOps / 安全编排自动化与响应)
- starred-awesome - clair - Vulnerability Static Analysis for Containers (Go)
- my-awesome - coreos / clair - Vulnerability Static Analysis for Containers. (Tool)
- awesome-cybersecurity-blueteam - Clair - Static analysis tool to probe for vulnerabilities introduced via application container (e.g., Docker) images. (DevSecOps / Service meshes)
README
# Clair
[](https://quay.io/repository/projectquay/clair)
[](https://pkg.go.dev/github.com/quay/clair/v4)
[](http://webchat.freenode.net/?channels=clair)**Note**: The `main` branch may be in an *unstable or even broken state* during development.
Please use [releases] instead of the `main` branch in order to get stable binaries.
Clair is an open source project for the [static analysis] of vulnerabilities in
application containers (currently including [OCI] and [docker]).Clients use the Clair API to index their container images and can then match it against known vulnerabilities.
Our goal is to enable a more transparent view of the security of container-based infrastructure.
Thus, the project was named `Clair` after the French term which translates to *clear*, *bright*, *transparent*.[The book] contains all the documentation on Clair's architecture and operation.
[OCI]: https://github.com/opencontainers/image-spec/blob/master/spec.md
[docker]: https://github.com/docker/docker/blob/master/image/spec/v1.2.md
[releases]: https://github.com/quay/clair/releases
[static analysis]: https://en.wikipedia.org/wiki/Static_program_analysis
[The book]: https://quay.github.io/clair/## Community
- Mailing List: [[email protected]](https://groups.google.com/forum/#!forum/clair-dev)
- IRC: #[clair](irc://irc.freenode.org:6667/#clair) on freenode.org
- Bugs: [issues](https://github.com/quay/clair/issues)## Contributing
See [CONTRIBUTING](.github/CONTRIBUTING.md) for details on submitting patches and the contribution workflow.
## License
Clair is under the Apache 2.0 license. See the [LICENSE](LICENSE) file for details.