Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-5099

Support npm package.json files in Clair

    XMLWordPrintable

Details

    • False
    • None
    • False
    • Not Selected
    • 0
    • 0% 0%
    • 0

    Description

      ACS's scanner supports scanning npm package.json files for vulnerabilities. ACS is looking to add this ability to ClairCore.

      ClairCore now has the ability to obtain language-specific vulnerability data from OSV. OSV's database includes npm data, so ClairCore has a datasource for npm packages.

      Attachments

        Issue Links

          Activity

            People

              rtannenb@redhat.com Ross Tannenbaum
              rtannenb@redhat.com Ross Tannenbaum
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: