Class: Quayio::Scanner::Check

Inherits:

Struct

• Object
• Struct
• Quayio::Scanner::Check

Defined in:

lib/quayio/scanner/check.rb

Instance Attribute Summary

• #docker_url ⇒ Object

  Returns the value of attribute docker_url.

• #quayio_token ⇒ Object

  Returns the value of attribute quayio_token.

Instance Method Summary

• #run ⇒ Object

Instance Attribute Details

#docker_url ⇒ Object

Returns the value of attribute docker_url

Returns:

• (Object) —

  the current value of docker_url

# File 'lib/quayio/scanner/check.rb', line 6

def docker_url
  @docker_url
end

#quayio_token ⇒ Object

Returns the value of attribute quayio_token

Returns:

• (Object) —

  the current value of quayio_token

# File 'lib/quayio/scanner/check.rb', line 6

def quayio_token
  @quayio_token
end

Instance Method Details

#run ⇒ Object

# File 'lib/quayio/scanner/check.rb', line 7

def run
  Docker.url = docker_url
  containers = Docker::Container.all
                                .map { |dc| dc.json['Config']['Image'] }
                                .uniq

  vulnerable_images = containers
                      .map { |container| Image.new(container, quayio_token) }
                      .select(&:vulnerable?)
                      .map(&:name)

  if vulnerable_images.empty?
    [:ok, "#{containers.size} Containers are ok"]
  else
    [:critical, "The images are insecure: #{vulnerable_images.join(', ')}"]
  end
end