Red Hat Quay Container Security Operator ignores imageContentSourcePolicy
Issue
- The Red Hat Quay Container Security Operator tries to resolve a external registry (like quay.io) and fails if the cluster is disconnected. The Operator should take a
imageContentSourcePolicy
into account when pulling vulnerability reports. - OpenShift Container Platform images are not listed as vulnerable in the Image Vulnerabilities overview
Environment
- Red Hat OpenShift Container Platform 4.x in a disconnected or air-gaped environment
- Quay 3.x with Clair image scanning
- Red Hat Quay Container Security Operator < 3.7.9
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.