Clair is an open source project for the static analysis of vulnerabilities in appc and docker containers.
CoreOS Clair's pricing varies based on deployment. Users find it cost-effective for vulnerability scanning and container security. Enterprise plans may offer customized pricing based on scale and specific requirements. Feedback highlights it as a budget-friendly option with comprehensive features relative to other security tools. Depending on the configuration, the cost may differ but often remains competitive for enterprises aiming to secure their container ecosystems efficiently.
Vulnerability data is continuously imported from a known set of sources and correlated with the indexed contents of container images in order to produce lists of vulnerabilities that threaten a container. When vulnerability data changes upstream, the previous state and new state of the vulnerability along with the images they affect can be sent via webhook to a configured endpoint. All major components can be customized programmatically at compile-time without forking the project.
eBay, Veritas, Verizon, SalesForce