Skip to content

Instantly share code, notes, and snippets.

@renatomefi

renatomefi/Article-dockerfile-security-scan-clair-whitelist.md

Created September 17, 2018 18:27
Show Gist options
  • Save renatomefi/0ad3592d978c211270b8fe861884af28 to your computer and use it in GitHub Desktop.
Save renatomefi/0ad3592d978c211270b8fe861884af28 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
Article-dockerfile-security-scan-clair-whitelist.md

Global whitelist

This will allow this CVEs to be ignored in any image, format is: CVE:Package name

generalwhitelist:
  CVE-2016-9843: zlib
  CVE-2017-1000158: python

Per image

I could ignore a certain CVE for an specific image only:

alpine:
    CVE-2016-9841: zlib
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment