Formed in 2009, the Archive Team (not to be confused with the archive.org Archive-It Team) is a rogue archivist collective dedicated to saving copies of rapidly dying or deleted websites for the sake of history and digital heritage. The group is 100% composed of volunteers and interested parties, and has expanded into a large amount of related projects for saving online and digital history.
FIWARE Docker Security Scan
Overview
Automatically scan a particular local docker image or all local docker containers with Clair Vulnerability Scanner using Clair-Scanner and clair-local-scan together with together with the Docker Bench for Security to check common best-practices around deploying FIWARE Docker containers in production.
The tests are all automated, and are inspired by the CIS Docker Community Edition Benchmark v1.1.0.
Installation
There are two ways to install and execute the code. The first one is installing locally the configuration files and script to execute the docker-compose locally (see README.md) or Ansible to deploy a virtual machine inside FIWARE Lab and preconfigure all the system to launch the scan automatically (see README.md).
Credits
- Docker
- docker-compose
- Clair Vulnerability Scanner
- Clair-Scanner (release v8 is included)
- clair-local-scan
- clair-container-scan
- Docker Bench Security
License
These scripts are licensed under Apache License 2.0.