The Clair plugin submits your docker image to your Clair server to scan your docker image for security vulnerabilities.

Example

kind: pipeline
name: default

steps:
- name: clair
  image: jmccann/drone-clair:1
  settings:
    url: http://clair.company.com
    username: johndoe
    password: mysecret
    scan_image: python:2.7

Properties

  • url

    stringoptional

    Clair server URL

    Default: none

  • username

    stringoptional

    Docker Registry username to download the `scan_image` from

    Default: none

  • password

    stringoptional

    Docker Registry password to download the `scan_image` from

    Secret recommended

    Default: none

  • scan_image

    stringoptional

    The docker image to scan. Supports Docker Hub or private repos.

    Default: none