Join the 1500 companies using G2 Track to manage SaaS spend, usage, contracts & compliance.
Explore G2 Track
 
Bookmark

CoreOS Clair

4.6
(5)

Open-source container vulnerability analysis service.

Chat with a G2 Advisor
Work for CoreOS Clair?

Learning about CoreOS Clair?

We can help you find the solution that fits you best.

Chat with a G2 advisor
Categories

CoreOS Clair Reviews

Chat with a G2 Advisor
Write a Review
Filter Reviews
Filter Reviews
  • Ratings
  • Company Size
  • User Role
  • Industry
Ratings
Company Size
User Role
Industry
Showing 5 CoreOS Clair reviews
LinkedIn Connections
CoreOS Clair review by Nikita G.
Nikita G.
Validated Reviewer
Review Source
content

"Great Open Source Tool"

What do you like best?

One thing I like about this tool is the ease of use when scanning of vulnerabilities. This can easily be deployed with Kubernetes and Docker. Easy to use with enterprise distros like Red Hat. I really like how easy it is to set up on your machine. It takes only a few minutes with a Docker container to launch the platform.

What do you dislike?

It is an open source tool and not exactly reliable. There are updates that get launched for the tool; but there is no knowing whether the tool is completely up to date. It is not in a stable state for long term use and can require a lot of administration in order to support it.

Recommendations to others considering the product

For anyone using CoreOS; I strongly recommend using AWS services as well as Red Hat enterprise; this is a great tool to implement into this kind of architecture.

What business problems are you solving with the product? What benefits have you realized?

We are using CoreOS for vulnerability assessment. I am using this tool with Docker; in order to launch this tool on various servers; that way it can be used for vulnerability assessments. Benefits I have realized are that if you are already an AWS and Red Hat user; this tool is easy to set up.

Sign in to G2 to see what your connections have to say about CoreOS Clair
CoreOS Clair review by User in Information Technology and Services
User in Information Technology and Services
Validated Reviewer
Review Source
content
Business partner of the vendor or vendor's competitor, not included in G2 scores.

"Clair OS for analysis of Vulnarrabilities"

What do you like best?

Vulnerability data is continuously imported from a known set of sources and correlated with the indexed contents of container images in order to produce lists of vulnerabilities that threaten a container. When vulnerability data changes upstream, the previous state and new state of the vulnerability along with the images they affect can be sent via webhook to a configured endpoint.

What do you dislike?

While importing vulnerability data we are facing issues. And not able to store in a container. The data is missing while storing in docker.

What business problems are you solving with the product? What benefits have you realized?

All major components can be customized programmatically at compile-time without forking the project. And used in our industry.

What Vulnerability Scanner solution do you use?

Nessus
Nessus
AlienVault USM (from AT&T Cybersecurity)
AlienVault USM (from AT&T Cybersecurity)
Acunetix Vulnerability Scanner
Acunetix Vulnerability Scanner
Qualys
Qualys
Netsparker
Netsparker
BurpSuite
BurpSuite
Amazon Inspector
Amazon Inspector
WhiteSource Software
WhiteSource Software
Nexpose
Nexpose
Black Duck Software Composition Analysis
Black Duck Software Composition Analysis
Alibaba Cloud Vulnerability Discovery Service
Alibaba Cloud Vulnerability Discovery Service
Veracode Application Security Platform
Veracode Application Security Platform
Thanks for letting us know!
CoreOS Clair review by User
User
Validated Reviewer
Review Source
content

"Clair is an easy way to scan container for vulnerabilities "

What do you like best?

I like how easy it is to scan containers for vulnerabilities. You can point an image at it and it will give you a full report.

What do you dislike?

I dislike that it's only static analysis, but it does get the job done.

Recommendations to others considering the product

You may have to script up a wrapper around the tool to use for CI/CD, but it's definitely worth it.

What business problems are you solving with the product? What benefits have you realized?

We needed a way to scan images during CI/CD before we pushed them to our master registry. Clair fit right into our pipeline and we can fail a build if it fails a the vulnerability scan.

CoreOS Clair review by Syed R.
Syed R.
Validated Reviewer
Review Source
content

"Nice and efficient software "

What do you like best?

vulnerability newsfeed and Pre-production analysis

What do you dislike?

Did not find any kind of problem yet. Very impressive

Recommendations to others considering the product

Very effective software

What business problems are you solving with the product? What benefits have you realized?

OS tech vulnerability test

CoreOS Clair review by User
User
Validated Reviewer
Review Source
content

"CoreOS"

What do you like best?

You can set automatic builds to test your code.

It allows for organized planning through the Boards section.

What do you dislike?

With all of the features, it's easy to get lost.

What business problems are you solving with the product? What benefits have you realized?

I am trying to solve a business problem

Kate from G2

Learning about CoreOS Clair?

I can help.
Chat Now
* We monitor all CoreOS Clair reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.
Categories
CoreOS Clair
CoreOS Clair
4.6
(5)