Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

HTML output format for scanning result #1274

Open
1 of 2 tasks
hogo6002 opened this issue Sep 25, 2024 · 0 comments
Open
1 of 2 tasks

HTML output format for scanning result #1274

hogo6002 opened this issue Sep 25, 2024 · 0 comments
Assignees
@hogo6002
Labels
container-scanning-mvp blockers for container scanning MVP enhancement New feature or request

Comments

@hogo6002
Copy link
Contributor

hogo6002 commented Sep 25, 2024
edited
Loading

The current OSV-Scanner table and vertical display formats have some limitations when adding more data, especially for container scanning results. Adding an HTML output format may be ideal for container image scanning use cases.

TODO:

  • Initial PR
  • Setup a webserver or host the html at localhost:<default port> when users don't specify --output <path>
@hogo6002 hogo6002 added the enhancement New feature or request label Sep 25, 2024
@hogo6002 hogo6002 self-assigned this Sep 25, 2024
@hogo6002 hogo6002 mentioned this issue Sep 25, 2024
Merged
hogo6002 added a commit that referenced this issue Oct 9, 2024
@hogo6002
feat(output): add HTML output format (#1258)
3702c3b 
Implement #1274
Add an HTML output format to display results more effectively,
particularly for container scanning.
This format retains all the information from the existing table output,
including called/uncalled vulnerability details.

New features:
* Provides a package summary page
* Groups vulnerabilities by source package and ecosystem.
Vulnerabilities from OS images are displayed last by default.
* Provides a total count of vulnerabilities (excluding uncalled
vulnerabilities by default).
* Surfaces container scanning metrics, such as layer commands.
* Shows fix version information.

![image](https://github.com/user-attachments/assets/dfe80bd4-243c-4f3e-8196-aef735b8b2ed)

![image](https://github.com/user-attachments/assets/620fc0b2-82a3-4fa0-bb62-557717aee1b1)

![image](https://github.com/user-attachments/assets/fbabe9f1-d054-4222-aba9-5d40acf93e1b)
@oliverchang oliverchang added the container-scanning-mvp blockers for container scanning MVP label Oct 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hogo6002 hogo6002

Labels
container-scanning-mvp blockers for container scanning MVP enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@oliverchang @hogo6002