vulnmap-iac-capture

command module
v0.0.0-...-ec42db3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 9, 2024 License: Apache-2.0 Imports: 7 Imported by: 0

README

Vulnmap IaC Capture CLI Extension

Overview

This module implements the Vulnmap CLI Extension to capture a Terraform state, filter it and send it to Vulnmap API.

Filtering

We use an allowlist to ensure we only send expected and non-sensitive information to the Vulnmap API.

You can find the expected fields in state.go and statefilter.go.

Usage

This repository produces a standalone binary for debugging purposes. We advise to use this command as part of Vulnmap CLI.

This is the usage for the standalone binary:

Usage of vulnmap-iac-capture:
      --api-rest-token string   Auth token for the API Usage (Required)
      --api-rest-url string     Url for Vulnmap REST API (default "https://api.vulnmap.khulnasoft.com")
  -d, --debug                   Show debug information (Optional default false)
      --org string              Organization public id (Required)
      --path string             Path to look for Terraform state files (can be a file, a directory or a glob pattern) (Optional default ".")
      --stdin                   Read Terraform state from the standard input instead of path (Optional)

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
cmd
vulnmap-iac-capture
internal
cloudapi
filefinder
filtering
http
reader
terraform
pkg
capture

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.