Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support Trivy Enterprise Reports #486

Open
Morl99 opened this issue Jan 31, 2024 · 3 comments
Open

Support Trivy Enterprise Reports #486

Morl99 opened this issue Jan 31, 2024 · 3 comments

Comments

@Morl99
Copy link
Contributor

Morl99 commented Jan 31, 2024

Trivy Enterprise reports have a different schema, it would be helpful if the vulnerability explorer could parse them as well.

Additional features could be:

  • show and filter acknowledgements
  • acknowledgement via aqua api
@d-koppenhagen
Copy link
Member

Where can I find the schema specification?

@Morl99
Copy link
Contributor Author

Morl99 commented Dec 22, 2024

that is a great question. I am afraid that I have not seen a real spec, but only actual reports. These can be generated by running trivy enterprise. Since this can only be done with a license, we could export one and check it into this repo. We probably need to clear this with aqua first, as I am unsure about the license of the produced report.

@d-koppenhagen
Copy link
Member

Great. So let's go this way. I've also seen no JSON schema definition for version 1 and 2. probably we should open an issue since it would be way better to refer to a published spec. It would also allow us to validate against the schema automatically without custom implementation.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Morl99 @d-koppenhagen