feat(sbom): add cyclonedx sbom scan (#2203)

Co-authored-by: knqyf263 <knqyf263@gmail.com>
2025-12-22 23:26:39 -08:00 · 2022-07-04 02:03:21 +09:00
parent f0720f3ce5
commit 5b821d3b13
58 changed files with 3896 additions and 105 deletions
--- a/pkg/commands/app.go
+++ b/pkg/commands/app.go
@@ -8,6 +8,7 @@ import (
 	"strings"
 	"time"

+	"github.com/samber/lo"
 	"github.com/urfave/cli/v2"

 	"github.com/aquasecurity/trivy-db/pkg/metadata"
@@ -929,7 +930,6 @@ func NewSbomCommand() *cli.Command {
 			&templateFlag,
 			&formatFlag,
 			&inputFlag,
-			&severityFlag,
 			&outputFlag,
 			&exitCodeFlag,
 			&skipDBUpdateFlag,
@@ -940,6 +940,7 @@ func NewSbomCommand() *cli.Command {
 			&ignoreUnfixedFlag,
 			&ignoreFileFlag,
 			&timeoutFlag,
+			&severityFlag,
 			&ignorePolicy,
 			&listAllPackages,
 			&cacheBackendFlag,
@@ -950,10 +951,17 @@ func NewSbomCommand() *cli.Command {
 			&offlineScan,
 			&insecureFlag,
 			&dbRepositoryFlag,
+			lo.ToPtr(withValue(securityChecksFlag, types.SecurityCheckVulnerability)), // Enable only vulnerability scanning

 			stringSliceFlag(skipFiles),
 			stringSliceFlag(skipDirs),

+			// for client/server
+			&remoteServer,
+			&token,
+			&tokenHeader,
+			&customHeaders,
+
 			// deprecated options
 			&cli.StringFlag{
 				Name:    "artifact-type",