remove security whitelist for centos scanning

docker · Sep 23, 2019 · a1c01b3 · a1c01b3
1 parent 6c99985
commit a1c01b3
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 36 deletions.
diff --git a/tests/centos7-clair-whitelist.yaml b/tests/centos7-clair-whitelist.yaml
diff --git a/tests/clairscan.sh b/tests/clairscan.sh
@@ -14,13 +14,13 @@ else
   echo 'using existing clair-scanner...'
 fi
 
-#ensure whitelist file (temporary)
-if [ ! -s ./centos7-clair-whitelist.yaml ]; then
-  echo 'downloading whitelist file...'
-  curl -s -L -o ./centos7-clair-whitelist.yaml https://github.internet2.edu/raw/docker/shib-idp/3.4.4_20190801/tests/centos7-clair-whitelist.yaml
-else
-  echo 'using existing whitelist file...'
-fi
+#if needed, ensure whitelist file
+#if [ ! -s ./centos7-clair-whitelist.yaml ]; then
+#  echo 'downloading whitelist file...'
+#  curl -s -L -o ./centos7-clair-whitelist.yaml https://github.internet2.edu/raw/docker/shib-idp/3.4.4_20190801/tests/centos7-clair-whitelist.yaml
+#else
+#  echo 'using existing whitelist file...'
+#fi
 
 #ensure DB container
 echo 'ensuring a fresh clair-db container...'
@@ -54,8 +54,8 @@ echo 'sending ip addr' ${clairip} 'to clair-scan server...'
 
 #run scan
 echo 'running scan...'
-./clair-scanner -w centos7-clair-whitelist.yaml --ip ${clairip} $1
-#./clair-scanner --ip ${clairip} $1
+#./clair-scanner -w centos7-clair-whitelist.yaml --ip ${clairip} $1
+./clair-scanner --ip ${clairip} $1
 retcode=$?
 
 #eval results