There is a view that will allow clair to only look at the most recent update_operation's vulnerabilities (per updater) however currently it is not used. Not using the view leads to issues where vulnerabilities associate with older update_operations are still considered leading to incorrect results.

Eg.

• An updater is configure and deployed
• An issue is identified with the updater where it is saving erroneous vulnerabilities
• The Clair team changes the updater and that change is deployed
• The erroneous vulnerabilities are still available at matcher query time

If we were using the aforementioned view the vulnerabilities associated with the older updater_operation would be ignored and eventually cleaned up by the GC (as is desired).