Clair

Run vulnerabilities analysis

Once you have images in your repository, you can discover if they contain known vulnerabilities that could affect your production workloads.

Requirements

  • Connectivity to the UI (Credentials)
  • A container image already deployed. Follow registry guide.

Hands-on

This is probably the easiest but powerful feature Harbor is providing. Navigate to the ubuntu:16.04 image we already deployed in previous steps:

Ubuntu detailed

Then, press SCAN button and wait for the result:

Ubuntu Scanned

As you can see, the old 16.04 ubuntu image contains more than 50 vulnerabilities and counting. You can click on each vulnerability to discover the details.