image-checker/go/main.go

package main

import (
	"context"
	"fmt"
	"log"
	"net/http"
	"regexp"
	"strings"
	"sync"
	"time"

	"github.com/docker/docker/api/types/container"
	"github.com/docker/docker/api/types/image"
	"github.com/docker/docker/client"
	"github.com/prometheus/client_golang/prometheus"
	"github.com/prometheus/client_golang/prometheus/promhttp"
	"github.com/regclient/regclient"
	"github.com/regclient/regclient/types/ref"
)

type ImageStatus struct {
	ContainerName    string
	Image            string
	Tag              string
	UpdateAvailable  float64
	LocalDigest      string
	RemoteDigest     string
}

type StatusCache struct {
	sync.RWMutex
	Data      []ImageStatus
	LastCheck time.Time
}

var (
	cache    = &StatusCache{Data: []ImageStatus{}, LastCheck: time.Time{}}
	interval = 6 * time.Hour
)

func toRegistryImage(imageTag string) (string, error) {
	r := regexp.MustCompile(`^(?:(?P<registry>[^/]+)/)?(?P<repo>[^:]+)(?::(?P<tag>.+))?$`)
	match := r.FindStringSubmatch(imageTag)
	if len(match) == 0 {
		return "", fmt.Errorf("Image-Tag nicht erkannt: %s", imageTag)
	}
	registry := match[r.SubexpIndex("registry")]
	repo := match[r.SubexpIndex("repo")]
	tag := match[r.SubexpIndex("tag")]
	if registry == "" {
		registry = "registry-1.docker.io"
	}
	if tag == "" {
		tag = "latest"
	}
	return fmt.Sprintf("%s/%s:%s", registry, repo, tag), nil
}

func extractDigest(s string) string {
	for _, part := range strings.Split(s, "@") {
		if strings.HasPrefix(part, "sha256:") {
			return part
		}
	}
	return s
}

func checkImageUpdates() {
	ctx := context.Background()
	cli, err := client.NewClientWithOpts(client.FromEnv)
	if err != nil {
		log.Printf("Fehler bei Docker-Client: %v", err)
		return
	}
	defer cli.Close()

	rc := regclient.New()

	// Nur laufende Container abrufen
	containers, err := cli.ContainerList(ctx, container.ListOptions{All: false})
	if err != nil {
		log.Printf("Fehler beim ContainerList: %v", err)
		return
	}

	images, err := cli.ImageList(ctx, image.ListOptions{All: true})
	if err != nil {
		log.Printf("Fehler beim ImageList: %v", err)
		return
	}

	// RepoTag → Digest map
	imageTagToDigest := make(map[string]string)
	for _, img := range images {
		for _, tag := range img.RepoTags {
			if len(img.RepoDigests) > 0 {
				imageTagToDigest[tag] = extractDigest(img.RepoDigests[0])
			} else {
				imageTagToDigest[tag] = img.ID
			}
		}
	}

	results := make([]ImageStatus, 0)
	for _, ctr := range containers {
		tag := ctr.Image
		containerName := "unknown"
		if len(ctr.Names) > 0 {
			containerName = ctr.Names[0]
		}

		imageRef, err := toRegistryImage(tag)
		if err != nil {
			log.Printf("Fehler beim Parsen des Image-Namens (%s): %v", tag, err)
			continue
		}

		localDigest := imageTagToDigest[tag]

		refObj, err := ref.New(imageRef)
		if err != nil {
			log.Printf("Ungültige Image-Referenz (%s): %v", tag, err)
			continue
		}

		desc, err := rc.ManifestHead(ctx, refObj)
		if err != nil {
			log.Printf("Fehler beim Abrufen des Remote-Manifests (%s): %v", tag, err)
			continue
		}
		remoteDigest := desc.GetDigest().String()

		update := 0.0
		if localDigest != remoteDigest {
			update = 1.0
			fmt.Printf("Container: %s\n  Image: %s\n  Local Digest:  %s\n  Remote Digest: %s\n  -> Update verfügbar!\n",
				containerName, tag, localDigest, remoteDigest)
		} else {
			fmt.Printf("Container: %s\n  Image: %s\n  Local Digest:  %s\n  Remote Digest: %s\n  -> Kein Update verfügbar.\n",
				containerName, tag, localDigest, remoteDigest)
		}

		labelImg, labelTag := tag, "latest"
		if cp := strings.Split(tag, ":"); len(cp) == 2 {
			labelImg, labelTag = cp[0], cp[1]
		}

		results = append(results, ImageStatus{
			ContainerName:   containerName,
			Image:           labelImg,
			Tag:             labelTag,
			UpdateAvailable: update,
			LocalDigest:     localDigest,
			RemoteDigest:    remoteDigest,
		})
	}

	// Speichern in Cache
	cache.Lock()
	cache.Data = results
	cache.LastCheck = time.Now()
	cache.Unlock()
}

type imageUpdateCollector struct {
	metric *prometheus.Desc
}

func newImageUpdateCollector() *imageUpdateCollector {
	return &imageUpdateCollector{
		metric: prometheus.NewDesc(
			"docker_image_update_available",
			"Ob Update für das lokale Docker-Image eines laufenden Containers verfügbar ist (1 = Update, 0 = aktuell)",
			[]string{"container_name", "image", "tag"},
			nil,
		),
	}
}

func (c *imageUpdateCollector) Describe(ch chan<- *prometheus.Desc) {
	ch <- c.metric
}

func (c *imageUpdateCollector) Collect(ch chan<- prometheus.Metric) {
	cache.RLock()
	defer cache.RUnlock()
	for _, stat := range cache.Data {
		ch <- prometheus.MustNewConstMetric(
			c.metric, prometheus.GaugeValue,
			stat.UpdateAvailable, stat.ContainerName, stat.Image, stat.Tag,
		)
	}
}

func main() {
	log.Printf("🚀 Docker Image Update Exporter gestartet (Intervall = %v)", interval)

	// Hintergrundprozess zum Aktualisieren des Caches
	go func() {
		for {
			checkImageUpdates()
			time.Sleep(interval)
		}
	}()
	checkImageUpdates() // initial

	exporter := newImageUpdateCollector()
	prometheus.MustRegister(exporter)

	http.Handle("/metrics", promhttp.Handler())
	log.Fatal(http.ListenAndServe(":9788", nil))
}
first commit 2025-07-17 02:35:36 +02:00			`package main`

			`import (`
remove go func 2025-07-21 09:23:50 +02:00			`"context"`
			`"fmt"`
			`"log"`
			`"net/http"`
			`"regexp"`
			`"strings"`
			`"sync"`
			`"time"`

			`"github.com/docker/docker/api/types/container"`
			`"github.com/docker/docker/api/types/image"`
			`"github.com/docker/docker/client"`
			`"github.com/prometheus/client_golang/prometheus"`
			`"github.com/prometheus/client_golang/prometheus/promhttp"`
			`"github.com/regclient/regclient"`
			`"github.com/regclient/regclient/types/ref"`
add cache 2025-07-17 10:24:53 +02:00			`)`

			`type ImageStatus struct {`
remove go func 2025-07-21 09:23:50 +02:00			`ContainerName string`
			`Image string`
			`Tag string`
			`UpdateAvailable float64`
			`LocalDigest string`
			`RemoteDigest string`
add cache 2025-07-17 10:24:53 +02:00			`}`

			`type StatusCache struct {`
remove go func 2025-07-21 09:23:50 +02:00			`sync.RWMutex`
			`Data []ImageStatus`
			`LastCheck time.Time`
add cache 2025-07-17 10:24:53 +02:00			`}`

			`var (`
remove go func 2025-07-21 09:23:50 +02:00			`cache = &StatusCache{Data: []ImageStatus{}, LastCheck: time.Time{}}`
			`interval = 6 * time.Hour`
first commit 2025-07-17 02:35:36 +02:00			`)`

fix check digest 2025-07-17 03:04:35 +02:00			`func toRegistryImage(imageTag string) (string, error) {`
remove go func 2025-07-21 09:23:50 +02:00			r := regexp.MustCompile(`^(?:(?P<registry>[^/]+)/)?(?P<repo>[^:]+)(?::(?P<tag>.+))?$`)
			`match := r.FindStringSubmatch(imageTag)`
			`if len(match) == 0 {`
			`return "", fmt.Errorf("Image-Tag nicht erkannt: %s", imageTag)`
			`}`
			`registry := match[r.SubexpIndex("registry")]`
			`repo := match[r.SubexpIndex("repo")]`
			`tag := match[r.SubexpIndex("tag")]`
			`if registry == "" {`
			`registry = "registry-1.docker.io"`
			`}`
			`if tag == "" {`
			`tag = "latest"`
			`}`
			`return fmt.Sprintf("%s/%s:%s", registry, repo, tag), nil`
first commit 2025-07-17 02:35:36 +02:00			`}`

fix check digest 2025-07-17 03:04:35 +02:00			`func extractDigest(s string) string {`
remove go func 2025-07-21 09:23:50 +02:00			`for _, part := range strings.Split(s, "@") {`
			`if strings.HasPrefix(part, "sha256:") {`
			`return part`
			`}`
			`}`
			`return s`
add cache 2025-07-17 10:24:53 +02:00			`}`

			`func checkImageUpdates() {`
remove go func 2025-07-21 09:23:50 +02:00			`ctx := context.Background()`
			`cli, err := client.NewClientWithOpts(client.FromEnv)`
			`if err != nil {`
			`log.Printf("Fehler bei Docker-Client: %v", err)`
			`return`
			`}`
			`defer cli.Close()`

			`rc := regclient.New()`

			`// Nur laufende Container abrufen`
			`containers, err := cli.ContainerList(ctx, container.ListOptions{All: false})`
			`if err != nil {`
			`log.Printf("Fehler beim ContainerList: %v", err)`
			`return`
			`}`

			`images, err := cli.ImageList(ctx, image.ListOptions{All: true})`
			`if err != nil {`
			`log.Printf("Fehler beim ImageList: %v", err)`
			`return`
			`}`

			`// RepoTag → Digest map`
			`imageTagToDigest := make(map[string]string)`
			`for _, img := range images {`
			`for _, tag := range img.RepoTags {`
			`if len(img.RepoDigests) > 0 {`
			`imageTagToDigest[tag] = extractDigest(img.RepoDigests[0])`
			`} else {`
			`imageTagToDigest[tag] = img.ID`
			`}`
			`}`
			`}`

			`results := make([]ImageStatus, 0)`
			`for _, ctr := range containers {`
			`tag := ctr.Image`
			`containerName := "unknown"`
			`if len(ctr.Names) > 0 {`
			`containerName = ctr.Names[0]`
			`}`

			`imageRef, err := toRegistryImage(tag)`
			`if err != nil {`
			`log.Printf("Fehler beim Parsen des Image-Namens (%s): %v", tag, err)`
			`continue`
			`}`

			`localDigest := imageTagToDigest[tag]`

			`refObj, err := ref.New(imageRef)`
			`if err != nil {`
			`log.Printf("Ungültige Image-Referenz (%s): %v", tag, err)`
			`continue`
			`}`

			`desc, err := rc.ManifestHead(ctx, refObj)`
			`if err != nil {`
			`log.Printf("Fehler beim Abrufen des Remote-Manifests (%s): %v", tag, err)`
			`continue`
			`}`
			`remoteDigest := desc.GetDigest().String()`

			`update := 0.0`
			`if localDigest != remoteDigest {`
			`update = 1.0`
			`fmt.Printf("Container: %s\n Image: %s\n Local Digest: %s\n Remote Digest: %s\n -> Update verfügbar!\n",`
			`containerName, tag, localDigest, remoteDigest)`
			`} else {`
			`fmt.Printf("Container: %s\n Image: %s\n Local Digest: %s\n Remote Digest: %s\n -> Kein Update verfügbar.\n",`
			`containerName, tag, localDigest, remoteDigest)`
			`}`

			`labelImg, labelTag := tag, "latest"`
			`if cp := strings.Split(tag, ":"); len(cp) == 2 {`
			`labelImg, labelTag = cp[0], cp[1]`
			`}`

			`results = append(results, ImageStatus{`
			`ContainerName: containerName,`
			`Image: labelImg,`
			`Tag: labelTag,`
			`UpdateAvailable: update,`
			`LocalDigest: localDigest,`
			`RemoteDigest: remoteDigest,`
			`})`
			`}`

			`// Speichern in Cache`
			`cache.Lock()`
			`cache.Data = results`
			`cache.LastCheck = time.Now()`
			`cache.Unlock()`
first commit 2025-07-17 02:35:36 +02:00			`}`

add logging 2025-07-17 03:15:14 +02:00			`type imageUpdateCollector struct {`
remove go func 2025-07-21 09:23:50 +02:00			`metric *prometheus.Desc`
add prometheus exporter 2025-07-17 03:12:27 +02:00			`}`

add logging 2025-07-17 03:15:14 +02:00			`func newImageUpdateCollector() *imageUpdateCollector {`
remove go func 2025-07-21 09:23:50 +02:00			`return &imageUpdateCollector{`
			`metric: prometheus.NewDesc(`
			`"docker_image_update_available",`
			`"Ob Update für das lokale Docker-Image eines laufenden Containers verfügbar ist (1 = Update, 0 = aktuell)",`
			`[]string{"container_name", "image", "tag"},`
			`nil,`
			`),`
			`}`
add prometheus exporter 2025-07-17 03:12:27 +02:00			`}`

add logging 2025-07-17 03:15:14 +02:00			`func (c imageUpdateCollector) Describe(ch chan<- prometheus.Desc) {`
remove go func 2025-07-21 09:23:50 +02:00			`ch <- c.metric`
add prometheus exporter 2025-07-17 03:12:27 +02:00			`}`

add logging 2025-07-17 03:15:14 +02:00			`func (c *imageUpdateCollector) Collect(ch chan<- prometheus.Metric) {`
remove go func 2025-07-21 09:23:50 +02:00			`cache.RLock()`
			`defer cache.RUnlock()`
			`for _, stat := range cache.Data {`
			`ch <- prometheus.MustNewConstMetric(`
			`c.metric, prometheus.GaugeValue,`
			`stat.UpdateAvailable, stat.ContainerName, stat.Image, stat.Tag,`
			`)`
			`}`
first commit 2025-07-17 02:35:36 +02:00			`}`
add prometheus exporter 2025-07-17 03:12:27 +02:00
			`func main() {`
remove go func 2025-07-21 09:23:50 +02:00			`log.Printf("🚀 Docker Image Update Exporter gestartet (Intervall = %v)", interval)`

			`// Hintergrundprozess zum Aktualisieren des Caches`
			`go func() {`
			`for {`
			`checkImageUpdates()`
			`time.Sleep(interval)`
			`}`
			`}()`
			`checkImageUpdates() // initial`

			`exporter := newImageUpdateCollector()`
			`prometheus.MustRegister(exporter)`

			`http.Handle("/metrics", promhttp.Handler())`
			`log.Fatal(http.ListenAndServe(":9788", nil))`
add prometheus exporter 2025-07-17 03:12:27 +02:00			`}`