You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.
Search by package name:
my-package
(implicit)
name:my-package
(explicit)
Search by package filename:
my-package.ext
(implicit)
filename:my-package.ext
(explicit)
Search by package tag:
latest
(implicit)
tag:latest
(explicit)
Search by package version:
1.0.0
(implicit)
version:1.0.0
(explicit)
prerelease:true
(prereleases)
prerelease:false
(no prereleases)
Search by package architecture:
architecture:x86_64
Search by package distribution:
distribution:el
Search by package license:
license:MIT
Search by package format:
format:deb
Search by package status:
status:in_progress
Search by package file checksum:
checksum:5afba
Search by package security status:
severity:critical
Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000
Search by # of package downloads:
downloads:>8
downloads:<100
Search by package type:
type:binary
type:source
Search by package size (bytes):
size:>50000
size:<10000
Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0
Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"
Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY
Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true
Search by repository:
repository:repo-name
Search queries for all Debian-specific (and related) package types
Search by component:
deb_component:unstable
Search queries for all Maven-specific (and related) package types
Search by group ID:
maven_group_id:org.apache
Search queries for all Docker-specific (and related) package types
Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)
Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)
Field type modifiers (depending on the type, you can influence behaviour)
For all queries, you can use:
~foo
for negation
For string queries, you can use:
^foo
to anchor to start of term
foo$
to anchor to end of term
foo*bar
for fuzzy matching
For number/date or version queries, you can use:
>foo
for values greater than
>=foo
for values greater / equal
<foo
for values less than
<=foo
for values less / equal
Need a secure and centralised artifact repository to deliver Alpine,
Cargo,
CocoaPods,
Composer,
Conan,
Conda,
CRAN,
Dart,
Debian,
Docker,
Go,
Helm,
Hex,
LuaRocks,
Maven,
npm,
NuGet,
P2,
Python,
RedHat,
Ruby,
Swift,
Terraform,
Vagrant,
Raw & More packages?
Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.
With support for all major package formats, you can trust us to manage your software supply chain.
sentinel 3da3c3c1002d0df0952f122849e…
One-liner (summary)
Description
The manifest for this package isn't available yet.
Digest:
sha256:9e607bb861a7d58bece26dd2c02874beedd6a097c1b6eca5255d5eb0d2236983
Command: /bin/sh -c #(nop) ADD file:d6fdacc1972df524a795bd36cf75dd355faefbe9a69d88d1fff95599e2eeed4c in / |
216.9 MB | ||
Digest:
sha256:b76afd7bd5fa263f2d47fab77b042d71606b674fd798ddbcdae000910b0ce94e
Command: /bin/sh -c #(nop) LABEL org.label-schema.schema-version=1.0 org.label-schema.name=CentOS Base Image org.label-schema.vendor=CentOS org.label-schema.license=GPLv2 org.label-schema.build-date=20190927 |
108.1 MB | ||
Digest:
sha256:caa5224661cf871f775c1e2146bf13e11e9a3b602f16880a35f1374bcbda2893
Command: /bin/sh -c #(nop) CMD ["/bin/bash"] |
301.7 MB | ||
Digest:
sha256:b77a2469aaf0c66f5188884e66cd934ecdc2d03a4acd59418970bf2805c1f036
Command: /bin/sh -c #(nop) ARG VERSION= |
37.0 MB | ||
Digest:
sha256:75148bdc5afe69ea1392b0a215bddfee21e683ac9b5105cb0a263cbff98225f5
Command: |1 VERSION=8 /bin/sh -c dnf -y --nodocs update && dnf clean all && rm -rf /var/cache/yum |
64.5 KB | ||
Digest:
sha256:7c3ab6a0ae760d9c14ba3da75c6e1df5fca19beff4739af5fac6d9b4d4659421
Command: /bin/sh -c #(nop) ARG BUILD_DATE=1970-01-01T00:00:00+0000 |
2.8 MB | ||
Digest:
sha256:b66a73581fddfd3c76ed0a02a3dadfc0d082d0403110cd2b69909ee054920e19
Command: /bin/sh -c #(nop) ARG SOURCE |
7.5 KB | ||
Digest:
sha256:b73cd19b49799d284ad07db85e394e404910aebabfccb9eba30720398d2e78b6
Command: /bin/sh -c #(nop) ARG REVISION |
4.0 KB | ||
Digest:
sha256:bcdaaf8421c7675dcc28ae2c834bb0c6bbcf7ffa16fe53ff6c73a4889bfc41b0
Command: /bin/sh -c #(nop) ARG BUILD_JOB_ID |
255.7 MB | ||
Digest:
sha256:c5e98251c2708fd973a57c6a1c76e2295b1f3e0b51f29db6b993663ca801c75c
Command: /bin/bash -c #(nop) EXPOSE 8301/tcp |
9.0 KB |
sentinel |
0 |
Security Scanning:
You can't see this because your subscription doesn't include this feature, sorry!
With Security Scanning, Cloudsmith will scan your artifacts for vulnerabilities when they're uploaded. These are then presented to you via the UI and the API, so that you can build rules into your CI/CD pipelines to decide how to handle low, medium, high and critical software vulnerabilities.
If you'd like to trial or ask about the Security Scanning feature, just ask us. We'll be happy to help!
Last scanned
1 week, 5 days ago
Scan result
Vulnerable
Vulnerability count
2
Max. severity
CriticalTarget: | ||
CRITICAL |
CVE-4310-33101: library: vulnerability titlePackage Name: package_name Installed Version: 1.3.94 Fixed Version: 2.10.87 References: lewis.com castro.info www.wu.info |
|
LOW |
CVE-1476-80044: library: vulnerability titlePackage Name: package_name Installed Version: 1.10.12 Fixed Version: 2.2.30 References: coleman-rosales.com hardy.com www.zamora-gregory.com |
These instructions assume you have setup the repository first (or read it).
To pull sentinel @ reference/tag latest:
docker pull docker.cloudsmith.io/opennms/opennms-26/sentinel:latest
To refer to this image after pulling in a Dockerfile, specify the following:
FROM docker.cloudsmith.io/opennms/opennms-26/sentinel:latest