Giter Site home page Giter Site logo

Comments (7)

digitalcoyote avatar digitalcoyote commented on May 30, 2024 1

Early look at the configuration for the Log:

{
"WarnOnly": false,
"Log": {
"OutPut": "ReportedVulnerabilities.log",
"LogLevel": 2,
"RollingInterval": 0
},
"CheckTransitiveDependencies": true,
"ErrorSettings": {
"ErrorSeverityThreshold": 5,
"CVSS3Threshold": -1,
"IgnoredPackages": [
{
"Id": "NugetDefense",
"Version": "1.0.8.0"
}
],
"IgnoredCvEs": []
},
"OssIndex": {
"Enabled": true,
"BreakIfCannotRun": true
},
"NVD": {
"SelfUpdate": false,
"TimeoutInSeconds": 15,
"Enabled": true,
"BreakIfCannotRun": true
}
}

from nugetdefense.

jwilliamson1 avatar jwilliamson1 commented on May 30, 2024

Closing as I saw Gitter is the prefered way to ask questions.

from nugetdefense.

digitalcoyote avatar digitalcoyote commented on May 30, 2024

Reopening to track request.

from nugetdefense.

digitalcoyote avatar digitalcoyote commented on May 30, 2024

I'm using Serilog to allow defining one or more log files (and eventually other sinks).

@jwilliamson1 if you have any preference on format, let me know. I intend to make the template string for Serilog configurable eventually, but if you have a preference, I'll start with that. I'm aiming to have an early version of this out this weekend and then expand it more later on.

from nugetdefense.

jwilliamson1 avatar jwilliamson1 commented on May 30, 2024

Hi! Thanks for looking at this. We use this xml format that Trivy supplies. It uses a junit template. Something like that would be ideal, but any output is good.
https://raw.githubusercontent.com/aquasecurity/trivy/master/contrib/junit.tpl

from nugetdefense.

digitalcoyote avatar digitalcoyote commented on May 30, 2024

@jwilliamson1 Would either of these work for you:

ExampleReports.zip

I tried to vaguely follow the template you linked while at the same time, getting something that should be "easily readable" and generic enough for general use. There are also separate logs in the latest build.

from nugetdefense.

digitalcoyote avatar digitalcoyote commented on May 30, 2024

A couple methods of doing this have been added in v1.0.8. Feel free to reopen this or comment if any other formats are required. I hope to get docs updated soon.

from nugetdefense.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.