Red Hat Quay Container Security Operator ignores imageContentSourcePolicy

Solution Verified - Updated -

Issue

  • The Red Hat Quay Container Security Operator tries to resolve a external registry (like quay.io) and fails if the cluster is disconnected. The Operator should take a imageContentSourcePolicy into account when pulling vulnerability reports.
  • OpenShift Container Platform images are not listed as vulnerable in the Image Vulnerabilities overview

Environment

  • Red Hat OpenShift Container Platform 4.x in a disconnected or air-gaped environment
  • Quay 3.x with Clair image scanning
  • Red Hat Quay Container Security Operator < 3.7.9

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content