Why does Clair report more container image vulnerabilities in my Quay registry after I upgrade Quay?

Solution Verified - Updated -


  • After we upgraded Quay and Clair our users noticed a increase in the number of vulnerabilities reported on their container images. This is causing confusion with all our OpenShift customers and increasing the number of tickets opened with our OpenShift DevOps team.


  • OpenShift Container Platform v4
  • Quay v3

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content