clair

Author: itaysk

incubator/clair/README.md

@@ -0,0 +1,29 @@
+# Codefresh Clair Plugin
+
+Clair is an open source Docker Image securitu scanning server. For more information see here: https://github.com/coreos/clair/
+
+There's an open source CLI tool for clair, called 'klar' that you can use to integrate secrurity scan into your pipeline. More info on klar: https://github.com/optiopay/klar
+
+## Usage
+
+Set environment variables described below, and run the command with the given image to scan:
+
+```yaml
+scan:
+    image: 'codefresh/klar:master'
+    commands:
+      - /klar codefresh/helm:2.8.1
+``` 
+
+(in this example we are scanning the helm image tagged 2.8.1 under codefresh organization in Docker Hub)
+
+## Environment Variables
+
+The minimal setup is described below. Please see Klar documentation for additional configuration.
+
+Name|Required|Description
+---|---|---
+CLAIR_ADDR|Yes|The address of the clair server
+DOCKER_USER|No|Docker registry account name
+DOCKER_PASSWORD|No|Docker registry account password
+

incubator/clair/plugin.yaml

@@ -0,0 +1,19 @@
+image: codefresh/klar:master
+version: 1.0.0
+description: Scan an image with Clair
+keywords:
+  - clair
+home: https://github.com/codefresh-io/pugins/tree/master/incubator/clair
+sources:
+  - https://github.com/optiopay/klar
+envs:
+  - name: CLAIR_ADDR
+    type: required
+    description: The address of the clair server
+  - name: DOCKER_USER
+    type: required
+    description: Docker registry account name.
+  - name: DOCKER_PASSWORD
+    description: Docker registry account password.
+context:
+  - kind: Clair