README
¶
Producers
A producer is a program that parses the output of a tool and converts it into Dracon compatible file that can be used by the enrichers and consumers.
Writing Producers
Producers can be written in any language that supports protobufs, we have examples in Golang and Python. They are all structured the same way:
- Parse program arguments:
in: the raw tool results file locationout: where to place the Dracon compatible output file location
- Parse the
infile into Protobufs (LaunchToolResponse) - Add metadata to Protobufs (e.g. git/source-code information)
- Write the protobuf bytes to the
outfile
Producer API
For convenience, there are helper functions in the ./producers pkg/module for
Golang/Python.
The WriteDraconOut/write_dracon_out method expects a list of issues to write
as the LaunchToolResponse protobuf. Your producer should parse the output of
a tool results into Issue protobufs which are then passed into this method.
Documentation
¶
Overview ¶
Package producers provides helper functions for writing Dracon compatible producers that parse tool outputs. Subdirectories in this package have more complete example usages of this package.
Index ¶
Constants ¶
This section is empty.
Variables ¶
var ( // InResults represents incoming tool output. InResults string // OutFile points to the protobuf file where dracon results will be written. OutFile string // Append flag will append to the outfile instead of overwriting, useful when there's multiple inresults. Append bool )
Functions ¶
func ParseFlags ¶
func ParseFlags() error
ParseFlags will parse the input flags for the producer and perform simple validation.
func ParseMultiJSONMessages ¶
ParseMultiJSONMessages provides method to parse tool results in JSON format. It allows for parsing single JSON files with multiple JSON messages in them.
func ReadInFile ¶
ReadInFile returns the contents of the file given by InResults. TODO: replace with os.ReadFile
func WriteDraconOut ¶
func WriteDraconOut( toolName string, issues []*draconapiv1.Issue, ) error
WriteDraconOut provides a generic method to write the resulting protobuf to the output file.
Types ¶
This section is empty.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package main of the cdxgen producer parses the CycloneDX output of cdxgen and create a singular Dracon issue from it
|
Package main of the cdxgen producer parses the CycloneDX output of cdxgen and create a singular Dracon issue from it |
|
Package main of the dependency track producer reads a dependency track export and translates it to dracon format
|
Package main of the dependency track producer reads a dependency track export and translates it to dracon format |
|
Package main implements the binary for parsing trufflehog results into the dracon format
|
Package main implements the binary for parsing trufflehog results into the dracon format |
|
types
Package types provides common types for audit report formats.
|
Package types provides common types for audit report formats. |
|
types/npmfullaudit
Package npmfullaudit provides types and functions for working with audit reports from npm's "Full Audit" endpoint (/-/npm/v1/security/audits) and transforming them into data structures understood by the Dracon enricher.
|
Package npmfullaudit provides types and functions for working with audit reports from npm's "Full Audit" endpoint (/-/npm/v1/security/audits) and transforming them into data structures understood by the Dracon enricher. |
|
types/npmquickaudit
Package npmquickaudit provides types and functions for working with audit reports from npm's "Quick Audit" endpoint (/-/npm/v1/security/audits/quick) and transforming them into data structures understood by the Dracon enricher.
|
Package npmquickaudit provides types and functions for working with audit reports from npm's "Quick Audit" endpoint (/-/npm/v1/security/audits/quick) and transforming them into data structures understood by the Dracon enricher. |