-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for image digests #6
Comments
There is a few options on how image digest can be converted to the container repository and tag. I will think how to implement such functionality into the cve-analyser tool. |
Current the tool accepts CVE/Image:tag pairs. Red Hat Advanced Cluster Security produces CVE reports with all images referenced by digest.
It is possible to remove the digest and pass that to the cve-analyser but the results are less complete due to the "latest" tag not being used for all image repos.
Add a mapping function to map image digests to image tags. I did this in my bash script like:
It's ugly and much slower than I would think GO can do but it works. There might be a better way but looking at the full image repo metadata and finding the arch/digest that matches seems to work pretty well.
The text was updated successfully, but these errors were encountered: