Commit b9dc1f1

mo <mo.khan@gmail.com>
2019-07-23 18:14:34
add subcommand to scan a docker image
main
1 parent cd73a57
Changed files (1)
lib
examine.rb
lib/examine.rb
@@ -15,10 +15,17 @@ module Examine
         command = 'docker ps --filter="name=clair-db" --filter="status=running" --filter="expose=5432/tcp" | grep -v CONT'
         print '.' until system(command)
 
-        clair_pid = spawn 'docker run --restart=unless-stopped -p 6060 --link clair-db:postgres -d --name clair arminc/clair-local-scan:latest'
+        clair_pid = spawn 'docker run --restart=unless-stopped -p 6060:6060 --link clair-db:postgres -d --name clair arminc/clair-local-scan:latest'
         puts "clair-local-scan started. (PID: #{clair_pid})"
       end
 
+      desc 'scan <image>', 'scan a specific image'
+      def scan(image)
+        system "docker pull #{image}"
+        system "echo clair-scanner -c http://localhost:6060 --ip $(hostname -i) #{image}"
+        system "clair-scanner -c http://localhost:6060 --ip 0.0.0.0 #{image}"
+      end
+
       desc 'status', 'status of clair server'
       def status
         system "docker ps -a | grep clair"