You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.
Search by package name:
my-package
(implicit)
name:my-package
(explicit)
Search by package filename:
my-package.ext
(implicit)
filename:my-package.ext
(explicit)
Search by package tag:
latest
(implicit)
tag:latest
(explicit)
Search by package version:
1.0.0
(implicit)
version:1.0.0
(explicit)
prerelease:true
(prereleases)
prerelease:false
(no prereleases)
Search by package architecture:
architecture:x86_64
Search by package distribution:
distribution:el
Search by package license:
license:MIT
Search by package format:
format:deb
Search by package status:
status:in_progress
Search by package file checksum:
checksum:5afba
Search by package security status:
severity:critical
Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000
Search by # of package downloads:
downloads:>8
downloads:<100
Search by package type:
type:binary
type:source
Search by package size (bytes):
size:>50000
size:<10000
Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0
Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"
Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY
Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true
Search by repository:
repository:repo-name
Search queries for all Debian-specific (and related) package types
Search by component:
deb_component:unstable
Search queries for all Maven-specific (and related) package types
Search by group ID:
maven_group_id:org.apache
Search queries for all Docker-specific (and related) package types
Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)
Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)
Field type modifiers (depending on the type, you can influence behaviour)
For all queries, you can use:
~foo
for negation
For string queries, you can use:
^foo
to anchor to start of term
foo$
to anchor to end of term
foo*bar
for fuzzy matching
For number/date or version queries, you can use:
>foo
for values greater than
>=foo
for values greater / equal
<foo
for values less than
<=foo
for values less / equal
Need a secure and centralised artifact repository to deliver Alpine,
Cargo,
CocoaPods,
Composer,
Conan,
Conda,
CRAN,
Dart,
Debian,
Docker,
Go,
Helm,
Hex,
LuaRocks,
Maven,
npm,
NuGet,
P2,
Python,
RedHat,
Ruby,
Swift,
Terraform,
Vagrant,
Raw & More packages?
Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.
With support for all major package formats, you can trust us to manage your software supply chain.
app_sidecar_ubuntu_bionic b92a82fa439649d7b74f167ad2e…
One-liner (summary)
Description
This package was uploaded with the following V2 Distribution manifest:
{
"schemaVersion": 2,
"mediaType": "application/vnd.docker.distribution.manifest.v2+json",
"config": {
"mediaType": "application/vnd.docker.container.image.v1+json",
"size": 7386,
"digest": "sha256:38c03b931be0c26efb69fa1dba2a86c74298ee392acb2381ff38b78016ecf503"
},
"layers": [
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 26708056,
"digest": "sha256:f22ccc0b8772d8e1bcb40f137b373686bc27427a70c0e41dd22b38016e09e7e0"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 850,
"digest": "sha256:3cf8fb62ba5ffb221a2edb2208741346eb4d2d99a174138e4afbb69ce1fd9966"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 162,
"digest": "sha256:e80c964ece6a3edf0db1cfc72ae0e6f0699fb776bbfcc92b708fbb945b0b9547"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 10689375,
"digest": "sha256:d1e994ee626d7a2d8ca66daef24a42650dac95d62922fdd2cef3e487ffb95a48"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 4319,
"digest": "sha256:0947e93c173175b3b92b44f30c47772d1418d2bf677193c53d21864029e98dd8"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 12496,
"digest": "sha256:9c62a873633698ac4ad0ee5deb8cd8758d364fcbe0cda7f714baa2dc01ad1054"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 3048,
"digest": "sha256:905ed4d94c19f9ee14726fd33489461ca72d66bc00307f3295b0b02b6e417cac"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 63968436,
"digest": "sha256:bcb499b8691fb92f851956c954be80b5d4a43a9a3e5f12c7142ce2051856cc43"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 65167092,
"digest": "sha256:6878ac08d9293583545e2c719fee619ee08837fe1b9e2508e4fc2b64efb53f97"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 548,
"digest": "sha256:80f01d29224ff8c40418909cbf2fecaa25c40977eaa4ea2cd69927211f849490"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 771,
"digest": "sha256:1c099a87d7cc4436c8c2c7a0d6709989378b706acbef2016c1da3ee7fc0d4e47"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 8599278,
"digest": "sha256:4071439416ab4d199efadb4307e80fd9e9af30f00db60ecea9af28757356aa8c"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 10118952,
"digest": "sha256:672a8b7be2f7984be53a5292c0ee7ffba76d3a4b6059f94d7e34bc3de667d211"
},
{
"mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
"size": 18719117,
"digest": "sha256:19b0a963d0c4feaae97cc95bcdb6a107cf1321eae2c86df5277f6f83ad80f0fd"
}
]
}
Digest:
sha256:f22ccc0b8772d8e1bcb40f137b373686bc27427a70c0e41dd22b38016e09e7e0
Command: /bin/sh -c #(nop) ADD file:6ef542de9959c3061f2d0758adb031e226b221a1a2cd748ff59e6fc13216a1c0 in / |
25.5 MB | ||
Digest:
sha256:3cf8fb62ba5ffb221a2edb2208741346eb4d2d99a174138e4afbb69ce1fd9966
Command: /bin/sh -c set -xe && echo '#!/bin/sh' > /usr/sbin/policy-rc.d && echo 'exit 101' >> /usr/sbin/policy-rc.d && chmod +x /usr/sbin/policy-rc.d && dpkg-divert --local --rename --add /sbin/initctl && cp -a /usr/sbin/policy-rc.d /sbin/initctl && sed -i 's/^exit.*/exit 0/' /sbin/initctl && echo 'force-unsafe-io' > /etc/dpkg/dpkg.cfg.d/docker-apt-speedup && echo 'DPkg::Post-Invoke { "rm -f /var/cache/apt/archives/*.deb /var/cache/apt/archives/partial/*.deb /var/cache/apt/*.bin || true"; };' > /etc/apt/apt.conf.d/docker-clean && echo 'APT::Update::Post-Invoke { "rm -f /var/cache/apt/archives/*.deb /var/cache/apt/archives/partial/*.deb /var/cache/apt/*.bin || true"; };' >> /etc/apt/apt.conf.d/docker-clean && echo 'Dir::Cache::pkgcache ""; Dir::Cache::srcpkgcache "";' >> /etc/apt/apt.conf.d/docker-clean && echo 'Acquire::Languages "none";' > /etc/apt/apt.conf.d/docker-no-languages && echo 'Acquire::GzipIndexes "true"; Acquire::CompressionTypes::Order:: "gz";' > /etc/apt/apt.conf.d/docker-gzip-indexes && echo 'Apt::AutoRemove::SuggestsImportant "false";' > /etc/apt/apt.conf.d/docker-autoremove-suggests |
850 bytes | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c [ -z "$(apt-get indextargets)" ] |
32 bytes | ||
Digest:
sha256:e80c964ece6a3edf0db1cfc72ae0e6f0699fb776bbfcc92b708fbb945b0b9547
Command: /bin/sh -c mkdir -p /run/systemd && echo 'docker' > /run/systemd/container |
162 bytes | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) CMD ["/bin/bash"] |
32 bytes | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ENV DEBIAN_FRONTEND=noninteractive |
32 bytes | ||
Digest:
sha256:d1e994ee626d7a2d8ca66daef24a42650dac95d62922fdd2cef3e487ffb95a48
Command: /bin/sh -c apt-get update && apt-get install --no-install-recommends -y iptables iproute2 sudo && apt-get upgrade -y && apt-get clean && rm -rf /var/log/*log /var/lib/apt/lists/* /var/log/apt/* /var/lib/dpkg/*-old /var/cache/debconf/*-old |
10.2 MB | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ARG VM_IMAGE_NAME |
32 bytes | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ARG VM_IMAGE_VERSION |
32 bytes | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: |2 VM_IMAGE_NAME=ubuntu VM_IMAGE_VERSION=bionic /bin/sh -c if [ "$VM_IMAGE_NAME" = "debian" ] && [ "$VM_IMAGE_VERSION" = "10" ]; then update-alternatives --set iptables /usr/sbin/iptables-legacy && update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy; fi |
32 bytes | ||
Digest:
sha256:0947e93c173175b3b92b44f30c47772d1418d2bf677193c53d21864029e98dd8
Command: |2 VM_IMAGE_NAME=ubuntu VM_IMAGE_VERSION=bionic /bin/sh -c useradd -m --uid 1338 application && echo "application ALL=NOPASSWD: ALL" >> /etc/sudoers |
4.2 KB | ||
Digest:
sha256:9c62a873633698ac4ad0ee5deb8cd8758d364fcbe0cda7f714baa2dc01ad1054
Command: /bin/sh -c #(nop) COPY dir:9e8e23f69431e5027d1b597d094ac3d6074e28c1cd588ff04a644dcde0400134 in /var/lib/istio/ |
12.2 KB | ||
Digest:
sha256:905ed4d94c19f9ee14726fd33489461ca72d66bc00307f3295b0b02b6e417cac
Command: /bin/sh -c #(nop) COPY multi:24f21c57145220ae8b58ff560bce910c4f3733b14ee5c172e9ea6947360f7aa6 in /var/run/secrets/istio/ |
3.0 KB | ||
Digest:
sha256:bcb499b8691fb92f851956c954be80b5d4a43a9a3e5f12c7142ce2051856cc43
Command: /bin/sh -c #(nop) COPY file:4bfecd1c43e4dfae1dc1b32b890b8ae0c91a5b399ec698aae87d26ce1e389921 in /tmp/istio-sidecar.deb |
61.0 MB | ||
Digest:
sha256:6878ac08d9293583545e2c719fee619ee08837fe1b9e2508e4fc2b64efb53f97
Command: |2 VM_IMAGE_NAME=ubuntu VM_IMAGE_VERSION=bionic /bin/sh -c dpkg -i /tmp/istio-sidecar.deb && rm /tmp/istio-sidecar.deb |
62.1 MB | ||
Digest:
sha256:80f01d29224ff8c40418909cbf2fecaa25c40977eaa4ea2cd69927211f849490
Command: |2 VM_IMAGE_NAME=ubuntu VM_IMAGE_VERSION=bionic /bin/sh -c echo "istio-proxy ALL=NOPASSWD: ALL" >> /etc/sudoers |
548 bytes | ||
Digest:
sha256:1c099a87d7cc4436c8c2c7a0d6709989378b706acbef2016c1da3ee7fc0d4e47
Command: /bin/sh -c #(nop) COPY file:b3b76273a13272babbf2c0625aaf3dccf084e50b0b33f725997da289562a1f89 in /usr/local/bin/echo-start.sh |
771 bytes | ||
Digest:
sha256:4071439416ab4d199efadb4307e80fd9e9af30f00db60ecea9af28757356aa8c
Command: /bin/sh -c #(nop) COPY file:4ecb1baea79a976e3e1183620006b97e2c884431ee64f4fe6d8f418f3e534fb3 in /usr/local/bin/client |
8.2 MB | ||
Digest:
sha256:672a8b7be2f7984be53a5292c0ee7ffba76d3a4b6059f94d7e34bc3de667d211
Command: /bin/sh -c #(nop) COPY file:d387c412cdcf97a339a6bab314006f845f676e9aad604769f899be34f5ece844 in /usr/local/bin/server |
9.7 MB | ||
Digest:
sha256:19b0a963d0c4feaae97cc95bcdb6a107cf1321eae2c86df5277f6f83ad80f0fd
Command: |2 VM_IMAGE_NAME=ubuntu VM_IMAGE_VERSION=bionic /bin/sh -c chmod +x /usr/local/bin/client /usr/local/bin/server |
17.9 MB | ||
Digest:
sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
Command: /bin/sh -c #(nop) ENTRYPOINT ["/usr/local/bin/echo-start.sh"] |
32 bytes |
Security Scanning:
You can't see this because your subscription doesn't include this feature, sorry!
With Security Scanning, Cloudsmith will scan your artifacts for vulnerabilities when they're uploaded. These are then presented to you via the UI and the API, so that you can build rules into your CI/CD pipelines to decide how to handle low, medium, high and critical software vulnerabilities.
If you'd like to trial or ask about the Security Scanning feature, just ask us. We'll be happy to help!
Last scanned
5 days, 8 hours ago
Scan result
Vulnerable
Vulnerability count
4
Max. severity
CriticalTarget: | ||
HIGH |
CVE-5861-31198: library: vulnerability titlePackage Name: package_name Installed Version: 1.4.70 Fixed Version: 2.7.54 References: www.mueller.org www.vasquez.org taylor-gray.com |
|
HIGH |
CVE-9686-57555: library: vulnerability titlePackage Name: package_name Installed Version: 1.10.5 Fixed Version: 2.3.100 References: www.weaver.biz www.henson.net www.martinez.com |
|
HIGH |
CVE-3061-12290: library: vulnerability titlePackage Name: package_name Installed Version: 1.8.22 Fixed Version: 2.10.78 References: www.matthews-merritt.net www.calderon.info www.norman.net |
|
MEDIUM |
CVE-5194-48764: library: vulnerability titlePackage Name: package_name Installed Version: 1.2.46 Fixed Version: 2.1.94 References: www.graham-williams.net www.steele.com thomas-may.com |