gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-05 20:40:16 -08:00
Code Issues Packages Projects Releases Wiki Activity

feat(report): add secrets template for codequality report (#2461)

Browse Source
This commit is contained in:
Nate
2022-07-27 08:55:32 +01:00
committed by GitHub
parent f9c17bd2d8
commit 946ce1672d
1 changed files with 33 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
contrib/gitlab-codequality.tpl
View File

@@ -45,7 +45,7 @@
"type": "issue", "type": "issue",
"check_name": "container_scanning", "check_name": "container_scanning",
"categories": [ "Security" ], "categories": [ "Security" ],
"description": {{ list .ID .Title | join ": " | printf "%q" }}, "description": {{ list "Misconfig" .ID .Title | join " - " | printf "%q" }},
"fingerprint": "{{ list .ID .Title $target | join "" | sha1sum }}", "fingerprint": "{{ list .ID .Title $target | join "" | sha1sum }}",
"content": {{ .Description | printf "%q" }}, "content": {{ .Description | printf "%q" }},
"severity": {{ if eq .Severity "LOW" -}} "severity": {{ if eq .Severity "LOW" -}}
@@ -67,5 +67,37 @@
} }
} }
{{- end -}} {{- end -}}
{{- range .Secrets -}}
{{- if $t_first -}}
{{- $t_first = false -}}
{{ else -}}
,
{{- end }}
{
"type": "issue",
"check_name": "container_scanning",
"categories": [ "Security" ],
"description": {{ list "Secret" .RuleID .Title | join " - " | printf "%q" }},
"fingerprint": "{{ list .RuleID .Title $target | join "" | sha1sum }}",
"content": {{ .Title | printf "%q" }},
"severity": {{ if eq .Severity "LOW" -}}
"info"
{{- else if eq .Severity "MEDIUM" -}}
"minor"
{{- else if eq .Severity "HIGH" -}}
"major"
{{- else if eq .Severity "CRITICAL" -}}
"critical"
{{- else -}}
"info"
{{- end }},
"location": {
"path": "{{ $target }}",
"lines": {
"begin": {{ .StartLine }}
}
}
}
{{- end -}}
{{- end }} {{- end }}
] ]