Open Source Vulnerability Analysis for your Containers

What is Clair?

Clair is a container vulnerability analysis service by CoreOS. It provides the list of vulnerabilities that threaten each container and can sends notifications whenever new vulnerabilities that affect existing containers are released.

Clair is a tool in the Container Tools category of a tech stack.

Clair is an open source tool with 5.07K Github Stars and 641 Github Forks. Here’s a link to Clair's open source repository on Github

Who Uses Clair?

Why people like Clair

Here’s a list of reasons why companies and developers use Clair.

Add a one-liner

Clair's Features

  • api defines how users interact with Clair and exposes a documented HTTP API.
  • worker extracts useful informations from layers and store everything in the database.
  • updater periodically updates Clair's vulnerability database from known vulnerability sources.
  • notifier dispatches notifications about vulnerable containers when vulnerabilities are released or updated.
  • database persists layers informations and vulnerabilities in Cayley graph database.
  • health summarizes health checks of every Clair's services.

Clair's alternatives

  • Kubernetes - Manage a cluster of Linux containers as a single system to accelerate Dev and simplify Ops
  • Docker Compose - Define and run multi-container applications with Docker
  • Rancher - Open Source Platform for Running a Private Container Service
  • Docker Swarm - Native clustering for Docker. Turn a pool of Docker hosts into a single, virtual host.
  • Docker Machine - Machine management for a container-centric world

See all alternatives to Clair

This page was verified by
jzelinskie jzelinskie