trivy-plugin-report

command module
v0.2.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 12, 2024 License: Apache-2.0 Imports: 8 Imported by: 0

README ยถ

๐Ÿ” trivy-plugin-report

็ฎ€ไฝ“ไธญๆ–‡

๐Ÿ“Š trivy-plugin-report is a plugin that can convert Trivy's output in JSON format into an EXCEL and nd Markdown files.

๐Ÿค” Why is it needed?

Trivy can output reports in various formats, but these reports are more suitable for technical personnel to study and fix vulnerabilities.

In many business scenarios, we also need to present security risks in a more understandable way to non-technical personnel, making EXCEL files particularly important.

In addition, we need to compile a comprehensive scan report that will outline the artifact information, image configuration, vulnerability overview, as well as detailed vulnerability information. The Markdown format is particularly suitable for editing and reviewing such reports, making it an ideal medium for this purpose.

๐ŸŒŸ Features

  • Trivy Compatibility: Supports reports generated by Trivy.
  • Office Friendly: Converts to EXCEL format, suitable for non-technical personnel to read and report.
  • Convenient Editing and Sharing: Documents in Markdown format serve as a carrier for scan reports, facilitating rapid editing and sharing of key security information.

๐Ÿ› ๏ธ Installation

trivy plugin install github.com/y4ney/trivy-plugin-report

๐Ÿš€ Usage

trivy image --format json -d --output plugin=report [--output-plugin-arg plugin_flags] <image_name>

OR

trivy image -f json <image_name> | trivy report [plugin_flags]

๐Ÿ“ Common Usage

  1. Generate an EXCEL table and name it output.xlsx

    trivy image -f json debian:12 | trivy report --excel-file output.xlsx

    img.png img.png

  2. Use --beautify to beautify the EXCEL file, that is, fill in the background color according to the severity of the vulnerabilities.

    trivy image -f json debian:12 | trivy report --excel-file output-beautify.xlsx --beautify

    img.png

  3. Generate an Markdown table and name it output.md

trivy image -f json sonobuoy/kube-hunter:v0.2.0 | trivy report --markdown-file output.md

For details, see kube-hunter.md

TODO

  • ๐Ÿ“ Export markdown file
  • ๐Ÿ“ Export PDF file
  • ๐ŸŒ Localize the report to Chinese
  • ๐ŸŒ Add Alibaba vulnerability source
  • ๐Ÿš€ Add CNNVD vulnerability source
  • ๐Ÿ›ก๏ธ Support for misconfiguration, license, and secret

Documentation ยถ

The Go Gopher

There is no documentation for this package.

Source Files ยถ

View all Source files

Directories ยถ

Path Synopsis
internal
excel
markdown
utils

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.