1.2.0 • Published 9 months ago

trivy-to-sonarqube v1.2.0

Weekly downloads
-
License
MIT
Repository
-
Last release
9 months ago

npm

NPM

Install

npm i trivy-to-sonarqube -g

Generate trivy report

trivy fs --ignorefile .trivyignore  -f json -o trivy-report.json  .
trivy config --ignorefile .trivyignore  -f json -o trivy-report.json  .
trivy image --ignorefile .trivyignore  -f json -o trivy-report.json  my-docker-image

Convert data to sonarqube generic issue format

trivy-to-sonarqube -f trivy-report.json -o ./my-sonarqube-report.json

Run sonar-scaner witch additional params

 sonar-scanner 
      -Dsonar.projectKey=MyProject
      -Dsonar.host.url=my-host.com
      -Dsonar.login=${SONARQUBE_TOKEN}
      -Dsonar.sources=.
      -Dsonar.externalIssuesReportPaths=./trivy-report.json
trivysonarqubereportgeneric issue
yargs
@infinitebrahmanuniverse/nolb-triv@everything-registry/sub-chunk-2972
1.2.0

9 months ago

1.1.0

9 months ago

1.1.1

1 year ago

1.0.5

2 years ago

1.0.4

2 years ago

1.0.3

2 years ago

1.0.2

2 years ago

1.0.1

2 years ago

1.0.0

2 years ago