Documentation
¶
Index ¶
Constants ¶
View Source
const ( // VulnTypeUnknown is a vulnerability type of unknown VulnTypeUnknown = VulnType("unknown") // VulnTypeOS is a vulnerability type of OS packages VulnTypeOS = VulnType("os") // VulnTypeLibrary is a vulnerability type of programming language dependencies VulnTypeLibrary = VulnType("library") // SecurityCheckUnknown is a security check of unknown SecurityCheckUnknown = SecurityCheck("unknown") // SecurityCheckVulnerability is a security check of vulnerabilities SecurityCheckVulnerability = SecurityCheck("vuln") // SecurityCheckConfig is a security check of misconfigurations SecurityCheckConfig = SecurityCheck("config") )
Variables ¶
This section is empty.
Functions ¶
func GetDockerOption ¶
func GetDockerOption(timeout time.Duration) (types.DockerOption, error)
GetDockerOption returns the Docker scanning options using DockerConfig
Types ¶
type BySeverity ¶ added in v0.13.0
type BySeverity []DetectedVulnerability
BySeverity implements sort.Interface based on the Severity field.
func (BySeverity) Len ¶ added in v0.13.0
func (v BySeverity) Len() int
Len returns the length of DetectedVulnerabilities
func (BySeverity) Less ¶ added in v0.13.0
func (v BySeverity) Less(i, j int) bool
Less compares 2 DetectedVulnerabilities based on package name, severity and vulnerabilityID
func (BySeverity) Swap ¶ added in v0.13.0
func (v BySeverity) Swap(i, j int)
Swap swaps 2 vulnerability
type DetectedMisconfiguration ¶ added in v0.19.0
type DetectedMisconfiguration struct {
Type string `json:",omitempty"`
ID string `json:",omitempty"`
Title string `json:",omitempty"`
Description string `json:",omitempty"`
Message string `json:",omitempty"`
Namespace string `json:",omitempty"`
Query string `json:",omitempty"`
Resolution string `json:",omitempty"`
Severity string `json:",omitempty"`
PrimaryURL string `json:",omitempty"`
References []string `json:",omitempty"`
Status MisconfStatus `json:",omitempty"`
Layer ftypes.Layer `json:",omitempty"`
// For debugging
Traces []string `json:",omitempty"`
}
DetectedMisconfiguration holds detected misconfigurations
type DetectedVulnerability ¶ added in v0.2.0
type DetectedVulnerability struct {
VulnerabilityID string `json:",omitempty"`
PkgName string `json:",omitempty"`
InstalledVersion string `json:",omitempty"`
FixedVersion string `json:",omitempty"`
Layer ftypes.Layer `json:",omitempty"`
SeveritySource string `json:",omitempty"`
PrimaryURL string `json:",omitempty"`
types.Vulnerability
}
DetectedVulnerability holds the information of detected vulnerabilities
type DockerConfig ¶
type DockerConfig struct {
UserName string `env:"TRIVY_USERNAME"`
Password string `env:"TRIVY_PASSWORD"`
RegistryToken string `env:"TRIVY_REGISTRY_TOKEN"`
Insecure bool `env:"TRIVY_INSECURE" envDefault:"false"`
NonSSL bool `env:"TRIVY_NON_SSL" envDefault:"false"`
}
DockerConfig holds the config of Docker
type MisconfStatus ¶ added in v0.19.0
type MisconfStatus string
MisconfStatus represents a status of misconfiguration
const ( // StatusPassed represents successful status StatusPassed MisconfStatus = "PASS" // StatusFailure represents failure status StatusFailure MisconfStatus = "FAIL" // StatusException Passed represents the status of exception StatusException MisconfStatus = "EXCEPTION" )
type ScanOptions ¶
type ScanOptions struct {
VulnType []string
SecurityChecks []string
ScanRemovedPackages bool
ListAllPackages bool
SkipFiles []string
SkipDirs []string
}
ScanOptions holds the attributes for scanning vulnerabilities
type SecurityCheck ¶ added in v0.18.2
type SecurityCheck = string
SecurityCheck represents the type of security check
func NewSecurityCheck ¶ added in v0.18.2
func NewSecurityCheck(s string) SecurityCheck
NewSecurityCheck returns an instance of SecurityCheck
Source Files
Click to show internal directories.
Click to hide internal directories.