harbor-scanner-adapter

[Kilz78]

Hello,

The scanning with Harbor seems to not works properly.

Harbor version : Version v2.0.0-87602132
Harbor-scanner-adapter : harbor-scanner-adapter:1.0.1
Kubectl version :

Client Version: version.Info{Major:"1", Minor:"19", GitVersion:"v1.19.14", GitCommit:"0fd2b5afdfe3134d6e1531365fdb37dd11f54d1c", GitTreeState:"clean", BuildDate:"2021-08-11T18:07:41Z", GoVersion:"go1.15.15", Compiler:"gc", Platform:"linux/amd64"}
Server Version: version.Info{Major:"1", Minor:"21+", GitVersion:"v1.21.3-mirantis-1", GitCommit:"f90619200aa730bdf8ee6b723ce3bbae6f66fef7", GitTreeState:"clean", BuildDate:"2021-08-14T15:51:58Z", GoVersion:"go1.16.6", Compiler:"gc", Platform:"linux/amd64"}

Anchore-Engine Helm Chart : Version: 1.18.6

Error on harbor :

2022-07-29T16:21:36Z [INFO] [/pkg/scan/job.go:156]: Report mime types: [application/vnd.scanner.adapter.vuln.report.harbor+json; version=1.0 application/vnd.scanner.adapter.vuln.report.raw+json]
2022-07-29T16:21:36Z [ERROR] [/pkg/scan/job.go:319]: scan job: submit scan request: v1 client: submit scan: general response handler: invalid character '<' looking for beginning of value

on the scanner adapter pod (kubectl logs) :

time="2022-07-29T16:20:39Z" level=info msg="handling request" accept="application/vnd.scanner.adapter.metadata+json; version=1.0" content-type= method=GET url=/api/v1/metadata
time="2022-07-29T16:20:39Z" level=debug msg="vulnerability DB update timestamp retrieved" db_update_timestamp="2022-07-29 16:11:17 +0000 UTC"
time="2022-07-29T16:20:39Z" level=info msg="sending json response"

Thanks...

[Kilz78]

@found-it @hunguyen1 hello any advice on this issue please ?

[Kilz78]

Hello @zhill @markyjackson-taulia @cafeliker,

I saw that someone said that this project is no more maintained.
How can we add Anchore scanner with Harbor ? Is the solution with the harbor adapter scanner was the only one ? any workaround ?

[Kilz78]

after playing with the conf, I have something a little bit different :

In harbor, every scan is blocked in "waiting for analyze"... in harbor UI.
On the scanner side (kubectl logs) we have this message in loop since at least 2 hours : (image size : 30Mo)

time="2022-08-02T14:06:11Z" level=info msg="handling request" accept="application/vnd.scanner.adapter.metadata+json; version=1.0" content-type= method=GET url=/api/v1/metadata
time="2022-08-02T14:06:11Z" level=debug msg="vulnerability DB update timestamp retrieved" db_update_timestamp="2022-08-02 13:13:22 +0000 UTC"
time="2022-08-02T14:06:11Z" level=info msg="sending json response"