Review on CoreOS Clair by Jerry Estrada
Very good & intuitive tool for CVE & Vulnerabilities identification
Clarity is very intuitive to use, has many useful features which are not available anywhere else in my opinion (it's open source after all). I especially like it for its ability quickly find out if an application uses any known exploits or vulnerabilities of Linux Kernel Vulnerabilities by scanning Docker images - without having root access over that machine/virtual host itself! It can work with other software too but as mentioned above this feature stands alone really well so far :D And lastly you need good skills when using CLI tooling provided otherwise there might be some issues at times while working through them ;) Highly Recommended! There isn't anything much negative about clair from what i could see yet maybe because haven’t used enough time playing around though :) If nothing comes up then sure go ahead just try different things until everything works perfecty fine & no complains come your way afterwards!!
- A lot more options than others
- Great community support / great feedbacks received here ever since joining.
- Can run locally easily via docker compose file setup instead running fullblown system containers etc.which makes life easier overall compared most tools providing similar services
- Good number os security checks built in already including vulnerability scans across image tags + kernel vuln scan capability !!!!It also includes various user agent checkers along side few
- Some difficulties
