github.com/quay/claircore@v1.5.28/docs/reference/matcher.md

github.com/quay/claircore@v1.5.28/docs/reference/matcher.md (about)

     1  # Matcher
     2  A Matcher performs the heavy lifting of matching manifest contents to relevant
     3  vulnerabilities. These implementations provide the smarts for understanding if a
     4  particular artifact in a layer is vulnerable to a particular advisory in the
     5  database.
     6  
     7  {{# godoc libvuln/driver.Matcher}}
     8  
     9  The `Filter` method is used to inform `Libvuln` the provided artifact is
    10  interesting.
    11  The `Query` method tells `Libvuln` how to query the security advisory database.
    12  The `Vulnerable` method reports whether the provided package is vulnerable to
    13  the provided vulnerability. Typically, this would perform a version check
    14  between the artifact and the vulnerability in question.