Skip to content

Latest commit

 

History

History
1539 lines (1493 loc) · 137 KB

CHANGELOG.md

File metadata and controls

1539 lines (1493 loc) · 137 KB

v4.1.0 - 2021-03-23

All

  • 6638793: use RateLimiter where it seems appropriate

Chore

Cicd

  • 8b0cdb3: use golang major version tag for dev env
  • c1895c4: use quay.io/projectquay/golang image

Claircore

  • bc2b059: update to use new libvuln API

Clairctl

Httputil

  • ed8ffc5: create package and RateLimiter

Initialize

  • 5df82e1: update call to Libindex contstructor

Introspection

  • ec59a43: enable readiness endpoint

v4.1.0-alpha.3 - 2021-05-04

Chore

  • f3d64ff: v4.1.0-alpha.3 changelog bump
  • 01c44cc: update claircore revision

Cicd

Config

  • 1f9b565: validate based on combo mode or not

Httptransport

  • 9e67501: fix LatestUpdateOperations method

Notifier

  • 6d33153: check msg contents in integration tests
  • cc4a10f: remove direct zerolog use

Tests

v4.1.0-alpha.2 - 2021-04-09

Chore

  • e0eea38: v4.1.0-alpha.2 changelog bump

Codec

v4.1.0-alpha.1 - 2021-04-05

All

  • a5bfaeb: switch to using codec package

Chore

  • 493beb1: v4.1.0-alpha.1 changelog bump
  • 4734435: v4.1.0-alpha.1 changelog bump
  • 6e8a838: bump cc to v0.4.0
  • 5a6f1c3: update claircore version for database fix
  • ea0378d: bump cc v0.3.0
  • 6e195c9: fix yaml file indentation issue

Cicd

  • b1145e3: sort changelog by semver
  • 7dc55fa: bump in go.16, bump out go1.14
  • d5e57af: enable CI on stable branches
  • f7737e5: fix openshift ci/cd script
  • 30c0311: update golang container for go-mod in app-sre
  • cb656df: add notifier to app interface
  • 9254ab6: use quay.io image in CI and Dockerfile

Clair

  • ecd8999: fix initialization error logging
  • dc2f893: reorganize initialization
  • 391c2f7: add Shutdown struct

Claircore

Clairctl

Client

  • bd50a95: remove request body buffering
  • ce11fd7: fix panic on request failure
  • #1186### Codec
  • 1fb6dcf: add package for codec pooling

Config

  • e9390fa: add matchers settings
  • eb519e0: allow gc to be disabled
  • f2d7313: rework into specific validators

Docs

  • 0f230f9: add support matrix
  • 102ae88: update cli reference
  • 9d0a2b2: fix psk related config references
  • 44303dc: install clairctl correctly
  • a3bb1b6: use correct clairctl subcommands
  • Closes #1122### Documentation
  • 2e65925: modified testing.md for clarity
  • #1180### Httptransport
  • 21dc720: add mime type to indexer and matcher handler
  • 8616cc6: return Accepted when not ready
  • 1ac26da: fix panic in metrics registration
  • 7305b3d: use correct handler for state endpoint
  • df5e7f9: check for err before deferring resp.Body.Close()

Initialize

  • 8a2df09: remove New function
  • 2d27ae5: add standalone initialization functions

Instrospection

  • b78f954: bump to opentelemetry 0.16.0

Introspection

  • 1ece08f: database metrics for notifier
  • 84ba35f: implement prometheus http

Local-Dev

  • 1c85589: remove unintented change in config.yaml

Logging

Matcher

Notifier

  • e7bf3b1: construct notification objects directly
  • 9962202: do AffectedManifests calls in chunks

Severity_mapping

Updaters

  • 8105b03: plumb update retention in

v4.0.5 - 2021-04-16

Chore

v4.0.4 - 2021-03-25

Chore

Cicd

  • 0800ba4: sort changelog by semver

Initialize

  • 7c4787b: wire up DisableUpdaters option

v4.0.3 - 2021-03-12

Chore

v4.0.2 - 2021-02-18

Chore

Client

v4.0.1 - 2021-02-15

Chore

v4.0.0 - 2020-12-15

Chore

Reverts

  • Dockerfile: Get build image from Quay instead of DockerHub
  • cicd: use golang image from quay.io

v4.0.0-rc.24 - 2020-12-11

Chore

v4.0.0-rc.23 - 2020-12-07

Chore

Cicd

  • 30444f3: use golang image from quay.io

v4.0.0-rc.22 - 2020-12-02

Chore

  • 8ef8509: v4.0.0-rc.22 changelog bump
  • bbe1cd8: claircore v0.1.18 bump

Documentation

  • d962bef: update links in howto/api

v4.0.0-rc.21 - 2020-12-01

Chore

Cidi

  • a576bf2: bump create pull request action

Clairctl

  • 835af27: fix and codify import arguments
  • b9ef107: update import and export online help
  • 9883e80: unifiy config, client handling

Config

  • dc8ba89: expose notification summary toggle
  • bb3cd66: add 'omitempty' to 'updaters' config struct for correct marshalling

Direct-Delivery

  • ea564d4: Fix slices in direct notifier

Dockerfile

  • c18563d: Get build image from Quay instead of DockerHub

Docs

  • 425fc38: add clairctl's new powers to the reference
  • f4169c4: Add information about AMQP delivery compatibility

Local-Dev

Notifier

  • 153f3e3: add summary tests
  • dd2e16d: optionally disable per-manifest summary
  • 77ca653: log failed delivery reason

v4.0.0-rc.20 - 2020-11-02

Chore

  • ba70ca3: v4.0.0-rc.20 changelog bump
  • e0e1f0d: bump claircore to v0.1.15

v4.0.0-rc.19 - 2020-10-26

Chore

  • ecdcc8e: v4.0.0-rc.19 changelog bump

Config

  • 157628d: add custom config marshaling

Go.Mod

v4.0.0-rc.18 - 2020-10-21

Chore

  • f0881e4: v4.0.0-rc.18 changelog bump

Notifier

v4.0.0-rc.17 - 2020-10-19

Chore

Cicd

  • d2bc2b6: remove deprecated set-env commands
  • 0cfda4d: update documentation action
  • 49e01d6: fix container build

Clairctl

  • 2363778: add environment variables for clairctl

Docs

  • dc4bda4: add Makefile target to build docs website

Local-Dev

Notifier

v4.0.0-rc.16 - 2020-10-09

Chore

  • 88407e2: v4.0.0-rc.16 changelog bump

Cicd

  • 96909bf: exclude darwin/arm64
  • 7786d7d: more debugging
  • 89c26ec: more debugging
  • 7a1eeaf: make sure the workspace exists
  • 68c0318: make empty changelog on manual trigger
  • 4e5ee29: rig up a workflow_dispatch to help debugging

v4.0.0-rc.15 - 2020-10-09

Chore

  • 8d87481: v4.0.0-rc.15 changelog bump

Cicd

  • d758248: maybe there's some newline issues

v4.0.0-rc.14 - 2020-10-09

Chore

  • e46b4f8: v4.0.0-rc.14 changelog bump

Cicd

  • 58a987d: invalid goos+goarch pair

v4.0.0-rc.13 - 2020-10-09

Chore

  • 6326327: v4.0.0-rc.13 changelog bump

Cicd

v4.0.0-rc.12 - 2020-10-08

Chore

  • 61ce675: v4.0.0-rc.12 changelog bump

Cicd

  • 28dcd94: parallelize release process, keep test failures

Clairctl

  • b1fee08: update some interactive help

Go.Mod

Local-Dev

  • 3b60292: make quay container ignore validations

Notifier

  • 0c1554e: ensure Content-Type header present in webhook notification
  • a2d5f9b: copy url struct

Pull Requests

  • Merge pull request #1086 from alecmerdler/webhook-notifier-headers

v4.0.0-rc.11 - 2020-10-02

Chore

  • f9f8635: v4.0.0-rc.11 changelog bump

Config

  • a4e0410: allow HTTP client to specify claims
  • 5aba727: ensure yaml/json struct tag for auth 'Issuer' field are the same

Notifier

  • 57e1ed0: pass configured client into notifier

Pull Requests

  • Merge pull request #1078 from alecmerdler/fix-issuer-struct-tag

v4.0.0-rc.10 - 2020-10-01

Chore

  • 2c54a82: v4.0.0-rc.10 changelog bump

Cicd

Docs

Go.Mod

  • bd1a3b7: update claircore version

Httptransport

  • 2c9762b: remove redundant method check

Openapi

  • 015d862: yamllint and spellcheck
  • d06dabf: change OperationIDs for notification endpoints

v4.0.0-rc.9 - 2020-09-29

Cicd

  • 04fab4a: build container with local checkout

v4.0.0-rc.8 - 2020-09-29

Chore

  • 6181cc6: v4.0.0-rc.8 changelog bump

Cicd

v4.0.0-rc.7 - 2020-09-29

Chore

  • 9282d29: v4.0.0-rc.7 changelog bump

Cicd

  • 195ce7a: move container building out of container

v4.0.0-rc.6 - 2020-09-29

Chore

  • 2f5756d: v4.0.0-rc.6 changelog bump

Cicd

  • f6aa6e6: use multiline string for clairctl build command

v4.0.0-rc.5 - 2020-09-29

Chore

  • 9b9ab32: v4.0.0-rc.5 changelog bump

Cicd

v4.0.0-rc.4 - 2020-09-29

Chore

Cicd

  • 600c737: constrain changelog
  • c447bcc: commit check regexp fix
  • 54ee2d2: change log generation and releases

Docs

Httptransport

  • e1144aa: made discovery endpoint more Accepting

Misc

  • 18e4db2: doc and commit check fixes

Notifier

  • 7d95067: remove first update constraint

v4.0.0-rc.3 - 2020-09-23

Auth

Chore

  • a38501b: claircore bump to v0.1.8

Client

Deployment

  • bc4c324: use service prefix for simplified path routing

Docs

Logging

v4.0.0-rc.2 - 2020-09-11

Chore

  • f41fba5: bump cc and golang container

v4.0.0-rc.1 - 2020-09-10

Auth

  • 29ed5f6: use better guesses for "aud" claim
  • 6932ad3: add keyserver algorithm allowlist
  • dc91ec9: test multiple PSK signing algorithms

Clairctl

  • c0a9c0b: init default updaters
  • 050bc2d: add import and export commands

Config

  • 03cf755: update matcher configurables
  • daf2e29: reorganize updater configuration

Deployment

Httptransport

Initialize

  • 98c8ffd: wire through new configuration options

Local-Dev

  • d1b6012: implement quay local development

Notifier

  • 9bd4f4d: test mode implementation
  • 4b35c88: log better
  • 717f8a0: correctly close channels after amqp delivery

v4.0.0-alpha.7 - 2020-06-01

Config

  • 3ccc6e0: add support for per-scanner configuration

Dockerfile

  • 5a73cb4: make -mod=vendor opportunisitic (#999)
  • #999### Dockerfile: Update To Alpine
  • de32b07: 3.11 for newest rpm

Go.Mod

Httptransport

v4.0.0-alpha.6 - 2020-05-01

Go.Mod

  • ef5fbc4: bump claircore version for severity fix

v4.0.0-alpha.5 - 2020-04-30

Config

v4.0.0-alpha.4 - 2020-04-20

Config

Httptransport

  • 5683018: serve OpenAPI definition

v4.0.0-alpha.3 - 2020-04-14

Clair

Clairctl

Client

  • 1ba6891: add differ and refactor client

Config

  • b2666e5: set a canonical default port

Dockerfile

  • 33da12a: run as unprivledged user by default

Documentation

  • fe324a5: start writing v4-specific docs

Httptransport

  • e783062: wire in update endpoints
  • 9cd6cab: report write errors via trailer

Workflows

Pull Requests

  • Merge pull request #955 from alecmerdler/openapi-fixes

v4.0.0-alpha.2 - 2020-03-26

*

.Github

  • 9b1f205: add stale and issue template enforcement

API

  • 0151dba: change api port to api addr, rename RunV2 to Run.
  • Fixes #446- a378cb0: drop v1 api, changed v2 api for Clair v3.

All

Alpine

  • 59e6c62: refactor fetcher & git pull on update
  • 9be305d: truncate namespace to "vMAJOR.MINOR"
  • f8457b9: compile alpine into clair binary
  • 3d90cac: add support for v3.4 YAML schema

Api

  • 69c0c84: Rename detector type to DType
  • 48427e9: Add detectors for RPC
  • dc6be5d: remove handleShutdown func
  • 30644fc: remove dependency on graceful
  • 58022d9: renamed V2 API to V3 API for consistency.
  • c6f0eaa: fix remote addr shows reverse proxy addr problem
  • a4edf38: v2 api with gRPC and gRPC-gateway
  • Fixes #98- 6a50bbb: fix 404 error logging
  • 7aa8869: WriteHeader on health endpoint
  • Fixes #141- f14e4de: fix anchor link in docs
  • 3563cf9: fix pagination token that's returned to match what has been passed
  • 274a162: log instead of panic when a response could not be marshaled
  • 8d76700: add call duration in logs
  • 418ab08: adjust postLayer error codes
  • f40f6a5: add missing link field in vulnerability in getLayer
  • 0e9a7e1: close gzip writer to flush it
  • db974ae: fix postLayer response headers
  • 6f02119: add bad requests to insert layer
  • ca2b0cc: support gzip responses
  • c7aa7c4: reorder constants and add comments
  • 4516d6f: make postLayer returns a Layer
  • d19a434: implement fernet encryption of pagination tokens
  • b8c534c: fix putVulnerability (fill missing Namespace.Name and Name fields)
  • c2061dc: fix negative timestamps in notifications
  • f68012d: fix 404->500 and NPE issues
  • c504d2e: add FeatureFromDatabaseModel
  • f351d63: add "Content-Type" and "Server" headers
  • 2d8d9ca: finish initial work on v1 API
  • b9a6da4: implement delete notification
  • 96e96d9: handle last page for notifications
  • 3eaae47: implement get notification
  • 116ce1a: fix log message when stopping the API server
  • c05848e: implement put vulnerability
  • 8209922: implement delete vulnerability
  • dc99d45: refactor endpoints and implement get vulnerability
  • 6ac9b5e: fix graceful stop
  • 9a8d4aa: implement post vulnerability
  • 38aeed4: implement get namespaces route
  • b916fba: implement delete layer route
  • 04c7351: use pointers in models to get proper omitempty semantics
  • 1a5aa88: use only one layer envelope
  • fa45d51: add JSON tags to API models
  • d130d2f: implement getLayer
  • 6b3f95d: fix /v1 router and some status codes
  • be9423b: add request / response types and rename some fields
  • 822ac7a: add initial work on the new API
  • 6e20993: simplify getLayer route and JSON output
  • e8b1617: return 400 if we can't extract a layer
  • 9946382: Extracted client cert & HTTP JSON Render to utils.
  • 9db0e63: Specify what packages cause the layer to have vulnerabilities.

Api,Database

  • a75b8ac: updated version_format documentation.
  • Fixes #514### Api/Database
  • 6d2eedf: add the layer name that add each feature in getLayer
  • e444e93: Add the ability to delete layers

Api/Prometheus

  • 83b19b6: add prometheus metrics to API routes

Api/V1

  • ebd0170: fix JSON struct tag misnomer
  • d4522e9: indexed layers for notifications
  • 68250f3: create namespace type
  • Fixes #99### Api/V3
  • 32b11e5: Add feature type to API feature
  • f550dd1: remove dependency on google empty message
  • d7a751e: prototool format

Api/V3/Clairpb

Api/Worker

CODEOWNERS

Clair

  • 42b1ba9: use Etag header to communicate indexer state change
  • fd5993f: add "mode" argument
  • 4091329: change version information
  • 8cbddd1: better introspection server defaults
  • c097454: logging and introspection setup
  • a003aa4: add configuration for introspection
  • d9db7c1: use "Updaters" config option
  • 48daeae: fix header casing
  • fb28e56: remove os.Exit call on clean shutdown
  • 8039e1c: add authorization checking
  • 1b41336: update claircore to 0.0.14
  • 791610f: remove goautoneg
  • 7b6ef7d: reset writers when pulled from pool
  • ad73d74: remove vendor directory
  • 00eff59: rewrite imports
  • 1f2ceeb: create module
  • c6497dd: Fix namespace update logic
  • 465687f: Add more logging on ancestry cache hit
  • 5b23764: Use builder pattern for constructing ancestry
  • 0283240: Implement worker detector support
  • 8896152: move worker to top level package
  • e5c567f: mv notifier to top level
  • 9c63a63: mv updater clair and mv severity to db
  • 343e24e: remove types package
  • 19e9d12: catch both SIGINT and SIGTERM for graceful shutdown

Clair Logic, Extensions

  • fb32dcf: updated mock tests, extensions, basic logic

Clairctl

Cmd

  • 0342a2a: make pagination key error clearer

Cmd/Clair

Config

Contrib

  • 76b9f8e: replace old k8s manifests with helm
  • ac1cdd0: move grafana and compose here
  • 5540d02: delete unsupported tools
  • f3840f3: Revert "Merge pull request #367 from jzelinskie/analyze-layers-v2"
  • #367- e772be5: only extract layers from history
  • ff3c6ec: Catch signals to delete tmp folder in local-analyze-images
  • 55e9c0d: Fix dead link from analyze-local-images' README
  • 1040dbb: Use return instead of os.Exit(1) in analyze-local-images
  • Fixes #117- 251df95: Add a ability to force colored output in analyze-local-images
  • f024576: Add vendors to analyze-local-images
  • 80ddc7f: Pretty up analyze-local-images
  • e341710: Add colors / Modify spacing in the analyze-local-images's output
  • 93ffc5a: Show feature line only if there's a vuln in analyze-local-images
  • 910288f: Add minimum severity support to analyze-local-images
  • 001c0a7: adapt analyze-local-images for new API
  • fee0bb5: load image history from 'manifest.json' first due to docker 1.10 changes.
  • Fixes #69- 75aff03: check-openvz-mirror-with-clair fix license
  • 8b137e8: add copyright in check-openvz-mirror-with-clair
  • 7df8e7f: add copyright in analyze-local-images
  • 867279a: Improve analyze-local-images docs and launch command.
  • Fixes #32- 9391417: Wait for extraction to finish before continuing.
  • 8d071e2: Don't pass -z to tar in analyze-local-images
  • 46f7645: Add a tool to analyze local Docker images

Contrib/Analyze-Local-Images

  • e103528: use exit(1) when there are vulnerabilities

Contrib/Helm/Clair

  • 13be17a: fix the ingress template

Contrib: Add Missing

Database

  • 506698a: add mapping for Ubuntu Eoan (19.10)
  • 1ddc053: Handle FindAncestryAndRollback datastore.Begin() error
  • Fixes #828- 6617f56: Rename affected type to feature type (for Amazon Linux updater)
  • 3fafb73: Split models.go into different files each contains one model
  • 1b9ed99: Move db logic to dbutil
  • 961c7d4: add test for lock expiration
  • a4e7873: make locks SOI & add Extend method
  • 5fa1ac8: Add StorageError type
  • f616753: Update feature model Remove source name/version fields Add Type field to indicate if it's binary package or source package
  • 7dd989c: Rename affected Type to feature type
  • 00eed77: Add feature_type database model
  • dd91597: remove FindLock from mock
  • 399deab: remove FindLock()
  • 300bb52: add FindLock dbutil
  • 4fbeb9c: add (Acquire|Release)Lock dbutils
  • 6c682da: add mapping for Ubuntu Cosmic (18.10)
  • a3f7387: Add FindKeyValue function wrapper
  • 00fadfc: Add affected feature type
  • f759dd5: Replace Parent Feature with source metadata
  • 3fe894c: Add parent feature pointer to Feature struct
  • a3e9b5b: rename utility functions with commit/rollback
  • e657d26: move dbutil and testutil to database from pkg
  • db2db8b: Update database model and interface for detectors
  • e160616: Use LayerWithContent as Layer
  • ff93039: changed Notification interface name
  • a5c6400: postgres implementation with tests.
  • b99e2b5: Add some missing copyright headers
  • 629d2ce: Mock Datastore interface
  • e7b960c: Allow specifying datastore driver by config
  • Fixes #145- 79ba99b: Fix invalid error message
  • 9b191fb: Find the FeatureVersion we try to insert before doing any lock
  • 8431950: use constants to store queries
  • 06531e0: disable hash/merge joins in FindLayer
  • 18f2d7e: modify join table in FindLayer to reduce cost by 3.5x
  • b5d8f99: fix notification test (wrong signature)
  • f0816d2: add docs about the interface
  • d3b1410: ignore insertLayer collisions to make it truly idempotent
  • e3a25e5: ignore min versions during new vulnerability insertions
  • 883be87: fix Ping() method in PostgreSQL's implementation
  • f8b4a52: make notification tests more robust (old/new, update/delete vulnerabilities)
  • ccaaff0: add created_at field for layers and vulnerabilities
  • 94ece7b: fix notification design and add vulnerability history
  • 99f3552: add Insert/DeleteVulnerabilityFix
  • 03d904c: improve PostgreSQL test inits and cleanups
  • 8f9779e: cache feature version upon lookup
  • 1e4ded6: add ability to list namespaces
  • 35df7ca: fix feature version cache
  • 8be18a0: write more of the notification system
  • d3d689a: don't prune locks when we renew one
  • 2690800: create notification during vulnerability insertion
  • 63ebddf: add vulnerability deletion support
  • 21f152c: fix keyvalue/notification tests
  • 563b382: let handleErrors deal with the not found case
  • 5759af5: test and fix layer updates
  • 248fc7d: fix cache collision (feature & feature versions)
  • 92b734d: remove an useless query in FindLayer
  • bd17dfb: ensure that concurrent vulnerability/feature versions insertions work fine
  • 74fc5b3: add missing transaction commits and close opened statement before inserting feature versions.
  • c5d1a8e: update vulnerabilities only when necessary
  • 1b53142: allow removing fixed packages in vulnerabilities
  • 7c70fc1: add initial vulnerability support
  • 3a786ae: add lock support
  • 6a9cf21: log and mask SQL errors
  • 970756c: do insert/find layers (with their features and vulnerabilities)
  • 32747a5: Don't ignore empty results in toValue(s)()
  • 3fe3f3a: Update cayley and use Triple instead of Quad
  • 9fc29e2: put missing predicates in consts and un-expose some of them
  • Fixes #16- 8285c56: Improve InsertVulnerabilities.
  • cfa960d: Update Cayley to fix slow deletions
  • 915903c: Fix to a locking issue with PostgreSQL
  • 8aacc8b: Ensure that quads in a tx are applied in the desired order.
  • 3a1d060: Use an estimator in Cayley's Size() w/ PostgreSQL
  • b0142e1: reduce pruneLocks/Unlock transaction.
  • 7f1ff8f: reduce InsertPackages transaction

Database/Api

  • 726bd3c: add layer deletion support

Database/Models

  • 0305dde: MetadataMap decodes from string

Database/Pgsql

Database/Worker

  • f229083: Remove useless log message

Datastore

  • 57b146d: updated for Clair V3, decoupled interfaces and models

Db/Pgsql/Feature

Db/Pgsql/Migration

Dckerfile

Detectors/Feature

  • fc908e6: add apk feature detector
  • e4b5930: consistent naming and godoc

Detectors/Namespace

  • 1d5a9dd: add alpine-release detector
  • 0b2a9ab: support pointers in tests

Dockerfile

Dockerfile

Docs

  • 49b5621: fix typo in running-clair
  • 9ee2ff4: add troubleshooting about kernel packages
  • 3f91bd2: turn README into full articles
  • 821a608: add links to contrib tools
  • 6e8e6ad: fix broken link
  • 107582c: Correct docker-compose command
  • 12c47e4: split http and json code blocks
  • 37a5826: improve GET/POST /v1/layers documentation
  • 859b194: fix the docker cli of running clair in README.md
  • fd6fdbd: update config example
  • 9329172: provide information to run Clair in README
  • 7b608ce: Add missing field in API Example
  • ec0decf: fix a typo in the model
  • Fixes #43### Documentation
  • 3e6896c: fix links to presentations
  • Closes #661 - Closes #665 - Closes #560### Documentation
  • c1a58bf: add new 3rd party tool

Driver

Drone

Example Config

Ext

  • 25078ac: add CleanAll() utility functions
  • 081ae34: remove duplicate vectorValuesToLetters definition
  • 4f0da12: pass through CVSSv3 impact and exploitability score
  • 8efc3e4: remove unneeded use of init()
  • 699d114: fixup incorrect copyright year
  • b81e445: Parse CVSSv3 data from JSON NVD feed
  • 14277a8: Add JSON NVD parsing tests
  • aab46f5: Parse NVD JSON feed instead of XML
  • 8d5a013: Use SHA256 instead of SHA1 for fingerprinting
  • 53bf19a: Lister and Detector returns detector info with detected content
  • cda3d48: feature detector -> featurefmt
  • 71a8b54: misc doc comment fixes
  • fb193e1: namespace detector -> featurens
  • d9be34c: data detector -> imagefmt
  • f9b3190: lock all drivers

Ext/Featurefmt

  • 1c40e7d: Refactor featurefmt testing code

Ext/Featurefmt/Apk

  • 2cc61f9: Extract origin package information from database
  • b2f2b2c: handle malformed packages

Ext/Featurefmt/Dpkg

  • 4ac0466: Extract source package metadata
  • 590e7e2: handle malformed packages

Ext/Featurefmt/Rpm

  • a057e4a: Extract source package from rpm database

Ext/Featurens

Ext/Vulnsrc/Alpine

Ext/Vulnsrc/Oracle

  • 09cbfe3: ensure flag is largest elsa
  • bcf47f5: fix ELSA version comparison

Ext/Vulnsrc/Rhel

Ext/Vulnsrc/Ubuntu

  • 300fe98: add missing version format

Feature

  • 90f5592: replace arrays with slices

Featurefmt

  • 34c2d96: Extract PotentialNamespace
  • 0e0d8b3: Extract source packages and binary packages The featurefmt now extracts both binary packages and source packages from the package manager infos.
  • 9561d62: use namespace's versionfmt to specify listers

Featurens

  • 947a8aa: Ensure RHEL is correctly identified
  • Fixes #436- 50437f3: fix detecting duplicated namespaces problem
  • 75d5d40: added multiple namespace testing for namespace detector

Fetchers/Alpine

  • f74cd35: add notes for untracked namespaces
  • 3be8dfc: auto detect namespaces

Fix

  • 4e49aaf: lock updater - return correct bool value

Github

  • 6a42aba: add mailing list!
  • c7a67ed: add issue template stable release notice
  • f6cac47: add issue template
  • 24ca12b: move CONTRIBUTING to github dir

Gitutil

  • 11b67e6: Fix git pull on non-git repository directory
  • Fixes #641### Glide
  • 165c397: add errgroup and regenerate vendor
  • d846c50: refresh dependencies

Go.Mod

  • ad58dd9: update to latest claircore

Godeps

  • 213468a: Remove implicit git submodules

HELM

  • 81430ff: also add option for nodeSelector
  • 6a94d8c: add option for tolerations

Helm

  • 710c655: allow for ingress path configuration in values.yml

Helm

  • 690d26e: change postgresql connection string format in configmap template
  • Fixes #561- 7a06a7a: Fixed a typo in maintainers field.

Helm Chart

  • bc6f37f: Use Secret for config file. Fix some minor issues
  • Fixes #581### Imagefmt
  • 891ce16: Move layer blob download logic to blob.go

Indexer

Integrations

  • a5b92fe: add quay enterprise as well

Layer

  • 015a79f: replace arrays with slices

Main

  • 7ca9127: default config to /etc/clair/config.yml
  • eb7e5d5: Use configuration file instead of flags and simplify app extension.

Mapping

Namespace

New API

  • a541e96: list vulnerabilities by namespace

Notifier

  • 927af43: Verify that the given webhook endpoint is an absolute URL
  • 2fb815d: Add proxy parameter to webhook notifier
  • 136b907: add README
  • 904ce60: add a timeout on the http client
  • 4478f40: fix notifier error handling and improve web hook error message
  • f4a4d41: Rename HTTP to Webhook Notifier
  • 2ea86c5: fix a bug that prevented graceful shutdown in certain cases
  • 480589a: retry upon failure
  • 3ff8bfa: Allow custom notifiers to be registered.
  • b3828c9: add ServerName configuration for TLS
  • 20a126c: Refactor and add client certificate authentification support.
  • Fixes #23### Notifier/Database
  • ad0531a: refactor notification system and add initial Prometheus support
  • c60d005: draft new notification system

Nvd

Openapi

Osrelease-Detector

  • d88f797: avoid colliding with other detectors

PgSQL

  • 57a4f97: fixed invalidating vulnerability cache query.

Pgsql

  • 0731df9: Remove unused test code
  • dfa07f6: Move notification to its module
  • 921acb2: Split vulnerability.go to files in vulnerability module
  • 7cc83cc: Split ancestry.go to files in ancestry module
  • 497b79a: Add test for migrations
  • ea418cf: Split layer.go to files in layer module
  • 176c69e: Move namespace to its module
  • 98e81ff: Move keyvalue to keyvalue module
  • ba50d7c: Move lock to lock module
  • 0b32b36: Move detector to pgsql/detector module
  • c50a233: Split feature.go to table based files in feature module
  • 43f3ea8: Move batch queries to corresponding modules
  • a330506: Move extra logic in pgsql.go to util folder
  • 8bebea3: Split testutil.go into multiple files
  • b03f1bc: Fix failed tests
  • ed9c6ba: Fix pgsql test
  • 5bf8365: Prevent inserting invalid entry to database
  • 8aae73f: Remove unnecessary logs
  • 79af05e: Fix postgres queries for feature_type
  • 073c685: Add proper tests for database migration
  • c6c8fce: Add feature_type to initial schema
  • a57d806: fix unchecked error
  • 0c1b80b: Implement database queries for detector relationship
  • 9c49d9d: Move queries to corresponding files
  • dca2d4e: Add detector to database schema
  • 5343309: update the query format
  • aea7455: Expand layer, namespace column widths
  • ca9f340: only select distinct layers
  • ea73aa1: searchNotificationLayerIntroducingVulnerability order by layer ID
  • 7a3dd5c: Disable hashjoins to get introducing layers for notifications
  • dc8f710: Reduce cost of GetNotification by 2.5
  • ec0aad9: Use booleans instead of varchar to return creation status
  • cd23262: Do not insert entry in Vulnerability_FixedIn_Feature if existing
  • Fixes #238- b8865b2: Replace liamstask/goose by remind101/migrate
  • Fixes #93- 5d8336a: use subquery to plan GetNotification query (#182)
  • #182- 51f9c5d: remove unnecessary join used in GetNotification (#179)
  • #179### Pgsql/Migrations
  • 224ff82: fix dpkg default versionfmt
  • eeb13a0: add index on Vulnerability_Notification.deleted_at
  • 7cff31a: add ldfv compound index

Pkg

  • c3904c9: Add fsutil to contian file system utility functions
  • 78cef02: cerrors -> commonerr
  • 03bac0f: utils/tar.go -> pkg/tarutil

Pkg/Gitutil

Pkg/Grpcutil

Pkg/Pagination

Pkg/Stopper

Pkg/Timeutil

Prometheus

  • 4f0f813: fix grafana's updater notes graph
  • cf3573c: correct notifier latency metric in grafana
  • 3defe64: add quantile to grafana
  • 0c5cdab: update grafana
  • baed60e: add initial Prometheus support

Psql

  • 9dc0026: add useful indexes
  • 363cde2: add debug message for duplicate layers

Psql/Migrations

README

ROADMAP

  • e9eb761: refresh with current priorities

Readme

  • a8c58d4: add various talks & slides
  • 93f7f10: replace latest by v1.2.2 and add reference to container repositories
  • 49fa75a: split "Related Links" into projects/slides (#177)
  • #177 - Fixes #173- b383767: add dependencies to getting started
  • 0979b01: add terminology and generic customization
  • d47616a: make API description consistence
  • af0ddce: s/notification/notifications
  • 2140995: clarify "marked as read" notifications
  • f48f94c: continue to nitpick
  • cadc182: add travis-ci badge

Redhatrelease

  • ce8d31b: override match for RHEL hosts

Refactor

  • 4a99037: move updaters and notifier into ext

Style

Tarutil

Travis

  • 870e812: Drop support for postgres 9.4 postgres 9.4 doesn't support ON CONFLICT, which is required in our implementation.

Update Documentation

Update The Ingress To Use ApiVersion

  • 435d053: networking.k8s.io/v1beta1

Updater

  • 7084a22: extract deduplicate function
  • e16d17d: remove original RunUpdate()
  • 0d41968: reimplement fetch() with errgroup
  • 6c5be7e: refactor to use errgroup
  • 2236b0a: Add vulnsrc affected feature type
  • 0d18a62: sleep before continuing the lock loop
  • Fixes #415- edfadc2: Log fetch completion
  • b792eb6: copy whole namespace when deduping vulns
  • 9639846: Set vulns' Severity from NVD metadata fetcher if unknown
  • 1c3daa2: minimize vulns' lock duration in the NVD metadata fetcher
  • be97db5: enable fetching of RHEL 5 vulnerabilities (#217)
  • #217 - Fixes #215- 34f62ef: delete Ubuntu's repository upon bzr errors
  • Fixes #169- 45ed80d: remove useless error
  • 2126259: use a better link for Ubuntu vulnerabilities and rename some constants
  • 431c0cc: add a clean function to fetchers
  • 3ecb8b6: ignore "ubuntu-core" in the Ubuntu fetcher
  • 8e85234: ensure that ubuntu's notes are unique
  • 99de759: namespace and split Ubuntu/RHEL vulnerabilities
  • 847c649: update RHEL fetcher and add not-affected capability
  • ea59b0e: update Ubuntu fetcher and add not-affected capability
  • 7e72eb1: ignore Debian's "temp" vulnerabilities
  • 77387af: port updater and its fetchers
  • 452f701: move each fetcher to its own package
  • e91365f: fix typos
  • 712aa11: Add support for Ubuntu Vivid Core and ignore Vivid PhoneOverlay
  • c055c33: Fix Ubuntu's partial update bug.
  • a7b683d: Refactor and merge fetcher responses
  • Fixes #17 - #19- 2452a8f: Always use bzr revno to get Ubuntu db's revision number.
  • Fixes #7### Updater
  • a14b372: fix stuck updater process

Updater,Pkg/Timeutil

Updater/Database

  • 7c11e4e: do not create notifications during the initial update

Updater/Fetchers

  • 0cb8fc9: add alpine secdb fetcher

Updater/Worker

Upgrade To Golang

Utils

Utils/Http

V1

V3

  • 88f5069: Analyze layer content in parallel
  • dd23976: Move services to top of the file
  • 9f5d1ea: associate feature and namespace with detector

Various

Vendor

  • 4106322: Update gopkg.in/yaml.v2 package
  • 34d0e51: Add golang-set dependency
  • 55ecf1e: regenerate after removing graceful
  • 1533dd1: updated vendor dir for grpc v2 api
  • 35df9d5: regenerate vendor directory with glide
  • 50d07cc: rm everything to prep for regeneration

Versionfmt

  • 8d29bf8: convert to using constant over literal
  • 6864a8e: init rpm versionfmt

Versionfmt/Dpkg

  • 1e9f14a: remove leading digit requirement

Versionfmt/Rpm

  • db8a133: handle a tilde correctly

Vulnmdsrc

  • ce6b008: update NVD URLs
  • Fixes #575### Vulnsrc
  • 72674ca: Refactor vulnerability sources to use utility functions

Vulnsrc Rhel

  • bd7102d: handle "none" CVE impact

Vulnsrc/Alpine

Vulnsrc/Ubuntu

  • 456af5f: use new git-based ubuntu tracker

Vulnsrc_oracle

Worker

  • 23ccd9b: Fix tests for feature_type
  • f0e21df: fixed duplicated ns and ns not inherited bug
  • ce6eba9: Rewrite unknown namespace warning
  • 8bedd0a: ns detectors now support VersionFormat
  • de1f09e: clarify maxFileSize purpose
  • Fixes #237- 2cb23ce: bump engine version
  • 8551a0a: Mock datastore in worker's tests
  • bae5a5e: remove duplicated tests
  • c2605e0: verify download status code
  • 41736e4: DetectData should return an error if the supported detector failed
  • 98ed041: remove double error
  • 9b51f7f: raise worker version number
  • 2f57f0d: change worker errors to bad request errors
  • b3ddfbc: remove namespace whitelist
  • 90fe137: move each data detector to their own packages and remove image format whitelist
  • 34842fd: fix dpkg detector and adapt tests
  • 343ce39: detect the status code when downloading a layer and expect 2XX.
  • ac0e68e: Add a missing CleanURL

Worker/Database

  • a38fbf6: Move upgrade detection logic out of database to worker

Workflows

Reverts

  • Merge pull request #199 from openSUSE/feature/opensuse
  • v1: pagination now deterministic

Pull Requests

  • Merge pull request #949 from alecmerdler/PROJQUAY-494
  • Merge pull request #936 from ldelossa/louis/interface-refactor
  • Merge pull request #933 from ldelossa/louis/config-and-make
  • Merge pull request #930 from ldelossa/louis/middleware-packaging
  • Merge pull request #929 from ldelossa/louis/cc-bump-v0.0.17
  • Merge pull request #924 from ldelossa/louis/severity-mapping
  • Merge pull request #903 from ldelossa/louis/environment-api
  • Merge pull request #897 from ldelossa/louis/state-json
  • Merge pull request #890 from ldelossa/louis/remove-healthhandler
  • Merge pull request #877 from mtougeron/update-ingress-apiversion
  • Merge pull request #873 from coreos/code-owners-update
  • Merge pull request #867 from andrewsharon/ubuntu19.10
  • Merge pull request #861 from thekbb/fix-broken-link-i-missed
  • Merge pull request #856 from thekbb/fix-links
  • Merge pull request #860 from jzelinskie/bump-v2-master
  • Merge pull request #851 from Allda/log-fix
  • Merge pull request #774 from Allda/updater_fix
  • Merge pull request #839 from noahklein/nvd-status-error
  • Merge pull request #829 from peacocb/peacocb-828-dos-on-ancestry-post
  • Merge pull request #831 from MVrachev/patch-1
  • Merge pull request #818 from vsamidurai/master
  • Merge pull request #822 from imlonghao/bullseye
  • Merge pull request #817 from ldelossa/remove-detectors
  • Merge pull request #755 from Allda/openshift_cert
  • Merge pull request #808 from coreos/add-louis
  • Merge pull request #797 from jzelinskie/drone
  • Merge pull request #805 from ldelossa/remove-ancestry-copy
  • Merge pull request #794 from ldelossa/local-dev-readme-update
  • Merge pull request #793 from ldelossa/local-dev-clair-db
  • Merge pull request #788 from ldelossa/helm-local-dev
  • Merge pull request #780 from jzelinskie/CODEOWNERS
  • Merge pull request #779 from jzelinskie/mailing-list
  • Merge pull request #773 from flumm/disco
  • Merge pull request #671 from ericysim/amazon
  • Merge pull request #766 from Allda/lock_timeout
  • Merge pull request #742 from bluelabsio/path-templating
  • Merge pull request #739 from joelee2012/master
  • Merge pull request #749 from cnorthwood/tarutil-glob
  • Merge pull request #741 from KeyboardNerd/parallel_download
  • Merge pull request #738 from Allda/potentialNamespaceAncestry
  • Merge pull request #721 from KeyboardNerd/cache
  • Merge pull request #735 from jzelinskie/fix-sweet32
  • Merge pull request #722 from Allda/feature_ns
  • Merge pull request #724 from KeyboardNerd/ref
  • Merge pull request #728 from KeyboardNerd/fix
  • Merge pull request #727 from KeyboardNerd/master
  • Merge pull request #725 from KeyboardNerd/license_test
  • Merge pull request #723 from jzelinskie/lock-tx
  • Merge pull request #720 from KeyboardNerd/update_ns
  • Merge pull request #695 from saromanov/fix-unchecked-error
  • Merge pull request #712 from KeyboardNerd/builder
  • Merge pull request #672 from KeyboardNerd/source_package/feature_type
  • Merge pull request #685 from jzelinskie/updater-cleanup
  • Merge pull request #701 from dustinspecker/patch-1
  • Merge pull request #700 from traum-ferienwohnungen/master
  • Merge pull request #680 from Allda/slices
  • Merge pull request #687 from jzelinskie/suse-config
  • Merge pull request #686 from jzelinskie/fix-presentations
  • Merge pull request #679 from kubeshield/master
  • Merge pull request #506 from openSUSE/reintroduce-suse-opensuse
  • Merge pull request #681 from Allda/rhel_severity
  • Merge pull request #667 from travelaudience/helm-tolerations
  • Merge pull request #656 from glb/elsa_CVEID
  • Merge pull request #650 from Katee/add-ubuntu-cosmic
  • Merge pull request #653 from brosander/helm-dep
  • Merge pull request #648 from HaraldNordgren/go_versions
  • Merge pull request #647 from KeyboardNerd/spkg/cvrf
  • Merge pull request #644 from KeyboardNerd/bug/git
  • Merge pull request #645 from Katee/include-cvssv3
  • Merge pull request #646 from KeyboardNerd/spkg/model
  • Merge pull request #640 from KeyboardNerd/sourcePackage
  • Merge pull request #639 from Katee/update-sha1-to-sha256
  • Merge pull request #638 from KeyboardNerd/featureTree
  • Merge pull request #633 from coreos/roadmap-1
  • Merge pull request #620 from KeyboardNerd/feature/detector
  • Merge pull request #627 from haydenhughes/master
  • Merge pull request #624 from jzelinskie/probot
  • Merge pull request #621 from jzelinskie/gitutil
  • Merge pull request #610 from MackJM/wip/master_nvd_httputil
  • Merge pull request #499 from yebinama/rhel_CVEID
  • Merge pull request #619 from KeyboardNerd/sidac/rm_layer
  • Merge pull request #617 from jzelinskie/grpc-refactor
  • Merge pull request #614 from KeyboardNerd/sidac/simplify
  • Merge pull request #613 from jzelinskie/pkg-pagination
  • Merge pull request #611 from jzelinskie/drop-graceful
  • Merge pull request #605 from KeyboardNerd/sidchen/feature
  • Merge pull request #606 from MackJM/wip/master_httputil
  • Merge pull request #607 from jzelinskie/gofmt
  • Merge pull request #604 from jzelinskie/nvd-urls
  • Merge pull request #601 from KeyboardNerd/sidchen/status
  • Merge pull request #594 from reasonerjt/fix-alpine-url
  • Merge pull request #578 from naibaf0/fix/helmtemplate/configmap/postgresql
  • Merge pull request #586 from robertomlsoares/update-helm-chart
  • Merge pull request #582 from brosander/helm-alpine-postgres
  • Merge pull request #571 from ErikThoreson/nvdupdates
  • Merge pull request #574 from hongli-my/fix-nvd-path
  • Merge pull request #572 from arno01/multi-stage
  • Merge pull request #540 from jzelinskie/document-proto
  • Merge pull request #569 from jzelinskie/ubuntu-git
  • Merge pull request #553 from qeqar/master
  • Merge pull request #551 from usr42/upgrade_to_1.10-alpine
  • Merge pull request #538 from jzelinskie/dockerize-protogen
  • Merge pull request #537 from tomer-1/patch-1
  • Merge pull request #532 from KeyboardNerd/readme_typo
  • Merge pull request #508 from joerayme/bug/436
  • Merge pull request #528 from KeyboardNerd/helm_typo
  • Merge pull request #522 from vdboor/master
  • Merge pull request #521 from yebinama/paclair
  • Merge pull request #518 from traum-ferienwohnungen/master
  • Merge pull request #513 from leandrocr/patch-1
  • Merge pull request #517 from KeyboardNerd/master
  • Merge pull request #505 from ericchiang/coc
  • Merge pull request #484 from odg0318/master
  • Merge pull request #498 from bkochendorfer/contributing-link
  • Merge pull request #482 from yfoelling/patch-1
  • Merge pull request #487 from ajgreenb/db-connection-backoff
  • Merge pull request #488 from caulagi/patch-1
  • Merge pull request #485 from yebinama/proxy
  • Merge pull request #481 from coreos/stable-release-issue-template
  • Merge pull request #479 from yebinama/nvd_vectors
  • Merge pull request #477 from bseb/master
  • Merge pull request #469 from zamarrowski/master
  • Merge pull request #475 from dctrud/clair-singularity
  • Merge pull request #467 from grebois/master
  • Merge pull request #465 from jzelinskie/github
  • Merge pull request #463 from brunomcustodio/fix-ingress
  • Merge pull request #459 from arthurlm44/patch-1
  • Merge pull request #458 from jzelinskie/linux-vulns
  • Merge pull request #450 from jzelinskie/move-token
  • Merge pull request #454 from InTheCloudDan/helm-tls-option
  • Merge pull request #455 from zmarouf/master
  • Merge pull request #449 from jzelinskie/helm
  • Merge pull request #447 from KeyboardNerd/ancestry_
  • Merge pull request #448 from jzelinskie/woops
  • Merge pull request #444 from jzelinskie/docs-refresh
  • Merge pull request #432 from KeyboardNerd/ancestry_
  • Merge pull request #442 from arminc/add-integration-clari-scanner
  • Merge pull request #433 from mssola/portus-integration
  • Merge pull request #408 from KeyboardNerd/grpc
  • Merge pull request #423 from jzelinskie/sleep-updater
  • Merge pull request #418 from KeyboardNerd/multiplens
  • Merge pull request #410 from KeyboardNerd/xforward
  • Merge pull request #416 from tianon/debian-buster
  • Merge pull request #413 from transcedentalia/master
  • Merge pull request #403 from KeyboardNerd/multiplens
  • Merge pull request #407 from swestcott/kubernetes-config-fix
  • Merge pull request #394 from KeyboardNerd/multiplens
  • Merge pull request #382 from caipre/patch-1
  • Merge pull request #395 from knqyf263/handle_tilde
  • Merge pull request #392 from jzelinskie/https-sec-db
  • Merge pull request #390 from KeyboardNerd/fernet
  • Merge pull request #389 from jzelinskie/revendor
  • Merge pull request #387 from jzelinskie/rm-analyze-local-images
  • Merge pull request #385 from KeyboardNerd/logrus
  • Merge pull request #381 from KeyboardNerd/bill-of-materials
  • Merge pull request #373 from josuesdiaz/fix_analyze_local
  • Merge pull request #378 from jzelinskie/oracle-update-fix
  • Merge pull request #374 from tianon/new-ubuntu-releases
  • Merge pull request #371 from caipre/add-logging
  • Merge pull request #370 from jzelinskie/featurens
  • Merge pull request #369 from jzelinskie/fix-ali
  • Merge pull request #367 from jzelinskie/analyze-layers-v2
  • Merge pull request #366 from jzelinskie/fixoracle
  • Merge pull request #361 from jzelinskie/ROADMAP.md
  • Merge pull request #363 from davidxia/patch-1
  • Merge pull request #362 from jzelinskie/malformedpkg
  • Merge pull request #360 from jzelinskie/cleanup
  • Merge pull request #359 from matslina/patch-1
  • Merge pull request #357 from jzelinskie/readme-reboot
  • Merge pull request #352 from kevinburke/fix-404
  • Merge pull request #354 from kevinburke/change-readme-text
  • Merge pull request #347 from jzelinskie/composeup
  • Merge pull request #348 from supereagle/update-image-spec-url
  • Merge pull request #341 from pizzarabe/Readme_Alpine35
  • Merge pull request #340 from coreos/philips-patch-1
  • Merge pull request #338 from pgburt/paulb-prod-users-integrations
  • Merge pull request #335 from jzelinskie/fixns
  • Merge pull request #334 from supereagle/update-dockerfile
  • Merge pull request #331 from supereagle/insecure-tls
  • Merge pull request #328 from jgsqware/master
  • Merge pull request #327 from jzelinskie/bad-ns-copy
  • Merge pull request #326 from Quentin-M/alpine_dfile
  • Merge pull request #324 from Quentin-M/log_ns
  • Merge pull request #325 from Quentin-M/alpine_dfile
  • Merge pull request #316 from jzelinskie/fix-alpine
  • Merge pull request #305 from jzelinskie/ext
  • Merge pull request #309 from jzelinskie/fixmigration6
  • Merge pull request #308 from jzelinskie/fixpagination
  • Merge pull request #307 from jzelinskie/layeridorder
  • Merge pull request #302 from jzelinskie/rmimage
  • Merge pull request #301 from jzelinskie/readme-git
  • Merge pull request #298 from jzelinskie/versions
  • Merge pull request #300 from miketheman/patch-1
  • Merge pull request #299 from alexei-led/master
  • Merge pull request #295 from jzelinskie/fixmigrationorder
  • Merge pull request #290 from Djelibeybi/oraclelinux-support
  • Merge pull request #288 from jzelinskie/200mb
  • Merge pull request #289 from jzelinskie/revert-suse
  • Merge pull request #287 from jzelinskie/enginebump
  • Merge pull request #272 from jzelinskie/alpine
  • Merge pull request #282 from jzelinskie/layer-sort-id
  • Merge pull request #280 from coreos/add_idx_deleted_at
  • Merge pull request #281 from coreos/dis_hashjoins_introducing
  • Merge pull request #277 from jzelinskie/travispg
  • Merge pull request #279 from coreos/searchintro_optimize
  • Merge pull request #278 from jzelinskie/layerdiffindex
  • Merge pull request #276 from jzelinskie/index
  • Merge pull request #274 from JensPiegsa/patch-1
  • Merge pull request #271 from Quentin-M/nvd_severity
  • Merge pull request #270 from Quentin-M/imp_docs
  • Merge pull request #263 from Quentin-M/rhel_unique_fixedin
  • Merge pull request #261 from Quentin-M/replace_goose
  • Merge pull request #262 from jzelinskie/travis
  • Merge pull request #257 from mattmoor/yakkety
  • Merge pull request #199 from openSUSE/feature/opensuse
  • Merge pull request #236 from robszumski/doc-link
  • Merge pull request #235 from jzelinskie/doc-move
  • Merge pull request #229 from vbatts/redhatrelease_detector
  • Merge pull request #216 from optiopay/doc-klar-ref
  • Merge pull request #205 from Quentin-M/readme_v122
  • Merge pull request #206 from Quentin-M/godeps_implsubmod
  • Merge pull request #186 from Quentin-M/delete_ubuntu_repository
  • Merge pull request #196 from jgsqware/integrate-glide
  • Merge pull request #188 from databus23/patch-1
  • Merge pull request #165 from Quentin-M/db_registration
  • Merge pull request #166 from jzelinskie/authlayer
  • Merge pull request #158 from Quentin-M/contrib_cleanup_signals
  • Merge pull request #143 from jzelinskie/travis
  • Merge pull request #142 from jzelinskie/healthfix
  • Merge pull request #139 from coreos/webhook_proxy
  • Merge pull request #137 from coreos/fix_k8s
  • Merge pull request #126 from harsha-y/master
  • Merge pull request #118 from coreos/cleanup_contrib
  • Merge pull request #123 from coreos/contrib_fix_deadlink
  • Merge pull request #116 from BWITS/master
  • Merge pull request #110 from jzelinskie/config-fixes
  • Merge pull request #111 from jzelinskie/dockerfile-update
  • Merge pull request #108 from philips/add-k8s-contrib
  • Merge pull request #107 from Quentin-M/reduce_logo
  • Merge pull request #106 from Quentin-M/logo
  • Merge pull request #105 from coreos/crtrb_forcecolor
  • Merge pull request #104 from coreos/ctrb_minseverity
  • Merge pull request #103 from jzelinskie/fix-config
  • Merge pull request #101 from Quentin-M/ctrb_minseverity
  • Merge pull request #100 from jzelinskie/namespaces
  • Merge pull request #96 from jzelinskie/rootyamlkey
  • Merge pull request #85 from keloyang/allowHost
  • Merge pull request #94 from unageanu/support-docker-compose
  • Merge pull request #82 from liangchenye/getvulns
  • Merge pull request #91 from Quentin-M/fix_pprof
  • Merge pull request #90 from jzelinskie/README-deps
  • Merge pull request #89 from Quentin-M/fv_find_before_lock
  • Merge pull request #83 from coreos/readme-feature-namespace
  • Merge pull request #81 from coolljt0725/fix_readme
  • Merge pull request #79 from liangchenye/v1doc
  • Merge pull request #77 from coreos/simplify
  • Merge pull request #76 from coreos/sp
  • Merge pull request #71 from Quentin-M/sql
  • Merge pull request #75 from sjourdan/fix_vuln_typo
  • Merge pull request #73 from maxking/doc
  • Merge pull request #74 from mnuessler/causedByPackage
  • Merge pull request #70 from liangchenye/read-manifest
  • Merge pull request #67 from Quentin-M/master
  • Merge pull request #65 from jzelinskie/fixdockerfile
  • Merge pull request #49 from liangchenye/master
  • Merge pull request #59 from davidxia/patch1
  • Merge pull request #52 from Quentin-M/custom_notifiers
  • Merge pull request #53 from coreos/ubdater
  • Merge pull request #46 from coreos/fix_sql_tovalue
  • Merge pull request #47 from coreos/sn
  • Merge pull request #51 from coolljt0725/update_analyze_local_image_doc
  • Merge pull request #50 from coolljt0725/fix_stop
  • Merge pull request #44 from Quentin-M/configfile
  • Merge pull request #42 from Quentin-M/triple
  • Merge pull request #35 from mrqwer88/check_openvz_mirror_with_clair
  • Merge pull request #29 from Quentin-M/notifier_tls
  • Merge pull request #22 from Quentin-M/predcst
  • Merge pull request #41 from coreos/travisfix
  • Merge pull request #33 from Quentin-M/insertvulns
  • Merge pull request #36 from coreos/gc
  • Merge pull request #39 from coreos/travis
  • Merge pull request #37 from Quentin-M/updater_refactor
  • Merge pull request #38 from Quentin-M/causedby
  • Merge pull request #26 from stapelberg/patch-1
  • Merge pull request #25 from fatalbanana/patch-1
  • Merge pull request #21 from coreos/updatefix
  • Merge pull request #24 from coreos/jonboulle-patch-1
  • Merge pull request #18 from Quentin-M/local-analysis
  • Merge pull request #11 from Quentin-M/bzr_parsing
  • Merge pull request #6 from Quentin-M/reduce_tx
  • Merge pull request #4 from Quentin-M/reduce_tx