Skip to content

changelog and readme changes #15

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
colinmoynes merged 1 commit into from
Jan 7, 2026
Merged

changelog and readme changes #15

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,14 @@

## [Unreleased]

## [Sonar] [v1.1] [2026-01-07]

### Update
- Implemented derived status logic that aggregates child image quarantine states to determine parent manifest status
- Enhanced table rendering with improved color schemes and formatting for better visual hierarchy

![alt text](Docker/Sonar/sonar-1.1.png)

## [Sonar] [v1.0] [2026-01-06]

### Added
Expand Down
10 changes: 10 additions & 0 deletions Docker/Sonar/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,7 @@ Here is a summary of its capabilities:
- **Multi-Arch & Single Images:** Visually groups architecture-specific images under their parent Manifest List tag, and automatically detects standalone single-architecture images.
- **Details:** Displays the Tag, Type, Platform, Status, Download Counts, and SHA256 Digests.
- **Export Options:** Supports exporting analysis data to JSON for integration with other tools.
- **Multi-Arch status:** Aggregates child image quarantine states to determine parent manifest status.
2. **Inspection Modes**
- **Single Image:** Can inspect a specific image repository (e.g., `my-org/my-repo/my-image`).
- **Full Catalog:** If no image name is provided, it automatically fetches the catalog and scans every image in the repository.
Expand All @@ -45,6 +46,9 @@ Here is a summary of its capabilities:
#### Query for untagged/ oprhaned images.
Copy link

Copilot AI Jan 7, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Spelling error: "oprhaned" should be "orphaned".

Suggested change
#### Query for untagged/ oprhaned images.
#### Query for untagged/ orphaned images.

Copilot uses AI. Check for mistakes.
<img src="untagged.gif">

#### Example of multi-arch status and download aggregation.
<img src="sonar-1.1.png">

## Prerequisites

1. **Python Environment**
Expand All @@ -59,6 +63,11 @@ Here is a summary of its capabilities:
export CLOUDSMITH_API_KEY=<api-key>
```

3. **Multi Arch Deletions**
To ensure that multi-arch images are fully deleted including child digests, ensure that you have the feature flag `Docker Manifest List Cascading` enabled for your Cloudsmith account.
This feature implements cascading deletions whenever the parent manifest/list is deleted. Please reach out to [Cloudsmith Support](https://help.cloudsmith.io/docs/contact-us) for further assistance with enabling this.


## How to use

1. **Basic Usage**
Expand All @@ -80,6 +89,7 @@ Here is a summary of its capabilities:
| `--untagged-delete` | Deletes any untagged manifest lists found. |
| `--delete-tag` | Deletes a specific tag from the repository. |
| `--delete-all` | Wipes all images and manifest lists detected by the scan. |
| `--force` | Force deletion without interactive prompt. |
| `--output` | Use `json` value to output results to JSON format . |

3. **Examples**
Expand Down
Binary file added Docker/Sonar/sonar-1.1.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading