-
Notifications
You must be signed in to change notification settings - Fork 5
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
2561221
commit 2e3d8b4
Showing
3 changed files
with
13 additions
and
2 deletions.
There are no files selected for viewing
11 changes: 11 additions & 0 deletions
11
...ection_and_display/Veracode Container Security Display (Unofficial)_relaxnow.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,11 @@ | ||
| --- | ||
| layout: post | ||
| repolink: "https://relaxnow.github.io/vcsd/" | ||
| title: "Veracode Container Security Display (Unofficial)" | ||
| description: "Display, sort and filter Container Security JSON results." | ||
| author: "relaxnow" | ||
| author-link: "https://github.com/relaxnow" | ||
| content-type: "results_collection_and_display" | ||
| repo: "github" | ||
| repo_title: "Veracode Container Security Display (Unofficial)" | ||
| --- |
Large diffs are not rendered by default.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1 +1 @@ | ||
| {"results-collection-and-display": [{"name": "Excel (XLS)", "link": "https://github.com/Komiblanka/Veracode2xls", "author": {"name": "Komiblanka", "profile_link": "https://github.com/Komiblanka/"}, "description": "Python scripts to format Veracode XML results into Excel workbook formats for easier human consumption.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "(XLSX)", "link": "https://github.com/Komiblanka/Veracode2xlsx", "author": {"name": "Komiblanka", "profile_link": "https://github.com/Komiblanka/"}, "description": "Python scripts to format Veracode XML results into Excel workbook formats for easier human consumption.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Generate License Notice file", "link": "https://github.com/gmdavef/sca-scripts", "author": {"name": "Dave Ferguson", "profile_link": "https://github.com/gmdavef"}, "description": "Python script that creates a License Notice file (sometimes called an Attribution Report) for an application that has been scanned by Veracode SCA.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Generate SBOM", "link": "https://github.com/christyson/GenerateSBOM", "author": {"name": "Chris Tyson", "profile_link": "https://github.com/christyson"}, "description": "Python script to generate a Software Bill of Materials (SBOM) for an application in either CycloneDX or SPDX format.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Hygieia", "link": "https://github.com/mickfeech/hygieia_veracode_collector", "author": {"name": "Mickfeech", "profile_link": "https://github.com/mickfeech/"}, "description": "Veracode scan collector and parser for the [Hygieia dashboard](https://github.com/Hygieia/ExecDashboard).", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "JupiterOne Graph Veracode", "link": "https://github.com/JupiterOne/graph-veracode", "author": {"name": "JupiterOne", "profile_link": "https://github.com/JupiterOne/"}, "description": "A graph conversion tool for Veracode.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "SCA Extractor", "link": "https://github.com/brian1917/vcodeSCAExtractor", "author": {"name": "Brian1917", "profile_link": "https://github.com/brian1917"}, "description": "Creates a CSV file with open source vulnerability (SCA) findings for all builds in the input file.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Scan Compare", "link": "https://github.com/antfie/scan_compare", "author": {"name": "antfie", "profile_link": "https://github.com/antfie"}, "description": "Use this tool to compare two Veracode Static Analysis (SAST) scans to understand why they are different.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Scan Health", "link": "https://github.com/antfie/scan_health", "author": {"name": "antfie", "profile_link": "https://github.com/antfie"}, "description": "Produces a SAST scan health report with guidance on changes to make in order to improve the packaging and module selection to achieve greater flaw accuracy.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Stats", "link": "https://github.com/ctcampbell/veracode-stats", "author": {"name": "Ctcampbell", "profile_link": "https://github.com/ctcampbell"}, "description": "Summary statistics for a Veracode account on the command line.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "VeraData", "link": "https://github.com/sebcoles/VeraData", "author": {"name": "Seb Coles", "profile_link": "https://github.com/sebcoles"}, "description": "Console application that will retrieve data (all scans, flaws, mitigations etc) for a given AppId and store the results in a relational schema (only supports MSSQL Server currently) ready for plugging your favourite BI tool into!", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "VeraCustomTriage", "link": "https://github.com/sebcoles/VeraCustomTriage", "author": {"name": "Seb Coles", "profile_link": "https://github.com/sebcoles"}, "description": "App that generates a .xlsx remediation plan from a set of scan results augmented with text from JSON configuration files. Custom text is added when flaw criteria is met (such as a CWE ID, module name, file or line number). This allows custom text such as internal workflows, wiki links, training, code snippets, 2nd party information or other languages into the auto generated remediation plan. Enables app sec teams to triage large volumes of flaws quickly whilst sharing a core advice repository in code.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Report Converter (CSV)", "link": "https://github.com/dipsylala/VeracodeReportConverter-Windows", "author": {"name": "Dipsylala", "profile_link": "https://github.com/dipsylala/"}, "description": ".NET Framework utility to extract useful data from Detailed Report XML file into CSV format", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Report Converter Portable (CSV)", "link": "https://github.com/dipsylala/VeracodeReportConverter-Portable", "author": {"name": "Dipsylala", "profile_link": "https://github.com/dipsylala/"}, "description": ".NET Core utility to extract useful data from Detailed Report XML file into CSV format", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Gitlab SCA results report and issue generation", "link": "https://gitlab.com/julz0815/scaresultsreport", "author": {"name": "julz0815", "profile_link": "https://gitlab.com/julz0815/"}, "description": "Rewrites Veracode's Agent Based SCA json results in Gitlab readable report format in (orde)r to display results as dependency scanning on the pipeline run", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Gitlab static results report and issue generation", "link": "https://gitlab.com/julz0815/veracodesastresultsimport", "author": {"name": "julz0815", "profile_link": "https://gitlab.com/julz0815/"}, "description": "A little Java Script will download json results from a Veracode policy or sandbox scan into Gitlab readable report format in order display results as SAST results on the pipeline run and create Gitlab issues on the findings", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "veracode-to-csv", "link": "https://github.com/ctcampbell/veracode-to-csv", "author": {"name": "Ctcampbell", "profile_link": "https://github.com/ctcampbell"}, "description": "This script outputs one CSV file per scan per application profile visible in a Veracode platform account. The output can be imported into Splunk for further analysis.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "VCCLI", "link": "https://github.com/michaelhorty/VCCLI", "author": {"name": "Michaelhorty", "profile_link": "https://github.com/michaelhorty"}, "description": "Veracode AST and Security Labs utility in .NET Core.", "categories": {"category": "Results collection and display", "subcategory": null}}]} | ||
| {"results-collection-and-display": [{"name": "Excel (XLS)", "link": "https://github.com/Komiblanka/Veracode2xls", "author": {"name": "Komiblanka", "profile_link": "https://github.com/Komiblanka/"}, "description": "Python scripts to format Veracode XML results into Excel workbook formats for easier human consumption.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "(XLSX)", "link": "https://github.com/Komiblanka/Veracode2xlsx", "author": {"name": "Komiblanka", "profile_link": "https://github.com/Komiblanka/"}, "description": "Python scripts to format Veracode XML results into Excel workbook formats for easier human consumption.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Generate License Notice file", "link": "https://github.com/gmdavef/sca-scripts", "author": {"name": "Dave Ferguson", "profile_link": "https://github.com/gmdavef"}, "description": "Python script that creates a License Notice file (sometimes called an Attribution Report) for an application that has been scanned by Veracode SCA.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Generate SBOM", "link": "https://github.com/christyson/GenerateSBOM", "author": {"name": "Chris Tyson", "profile_link": "https://github.com/christyson"}, "description": "Python script to generate a Software Bill of Materials (SBOM) for an application in either CycloneDX or SPDX format.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Hygieia", "link": "https://github.com/mickfeech/hygieia_veracode_collector", "author": {"name": "Mickfeech", "profile_link": "https://github.com/mickfeech/"}, "description": "Veracode scan collector and parser for the [Hygieia dashboard](https://github.com/Hygieia/ExecDashboard).", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "JupiterOne Graph Veracode", "link": "https://github.com/JupiterOne/graph-veracode", "author": {"name": "JupiterOne", "profile_link": "https://github.com/JupiterOne/"}, "description": "A graph conversion tool for Veracode.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "SCA Extractor", "link": "https://github.com/brian1917/vcodeSCAExtractor", "author": {"name": "Brian1917", "profile_link": "https://github.com/brian1917"}, "description": "Creates a CSV file with open source vulnerability (SCA) findings for all builds in the input file.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Scan Compare", "link": "https://github.com/antfie/scan_compare", "author": {"name": "antfie", "profile_link": "https://github.com/antfie"}, "description": "Use this tool to compare two Veracode Static Analysis (SAST) scans to understand why they are different.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Scan Health", "link": "https://github.com/antfie/scan_health", "author": {"name": "antfie", "profile_link": "https://github.com/antfie"}, "description": "Produces a SAST scan health report with guidance on changes to make in order to improve the packaging and module selection to achieve greater flaw accuracy.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Stats", "link": "https://github.com/ctcampbell/veracode-stats", "author": {"name": "Ctcampbell", "profile_link": "https://github.com/ctcampbell"}, "description": "Summary statistics for a Veracode account on the command line.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "VeraData", "link": "https://github.com/sebcoles/VeraData", "author": {"name": "Seb Coles", "profile_link": "https://github.com/sebcoles"}, "description": "Console application that will retrieve data (all scans, flaws, mitigations etc) for a given AppId and store the results in a relational schema (only supports MSSQL Server currently) ready for plugging your favourite BI tool into!", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "VeraCustomTriage", "link": "https://github.com/sebcoles/VeraCustomTriage", "author": {"name": "Seb Coles", "profile_link": "https://github.com/sebcoles"}, "description": "App that generates a .xlsx remediation plan from a set of scan results augmented with text from JSON configuration files. Custom text is added when flaw criteria is met (such as a CWE ID, module name, file or line number). This allows custom text such as internal workflows, wiki links, training, code snippets, 2nd party information or other languages into the auto generated remediation plan. Enables app sec teams to triage large volumes of flaws quickly whilst sharing a core advice repository in code.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Report Converter (CSV)", "link": "https://github.com/dipsylala/VeracodeReportConverter-Windows", "author": {"name": "Dipsylala", "profile_link": "https://github.com/dipsylala/"}, "description": ".NET Framework utility to extract useful data from Detailed Report XML file into CSV format", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Report Converter Portable (CSV)", "link": "https://github.com/dipsylala/VeracodeReportConverter-Portable", "author": {"name": "Dipsylala", "profile_link": "https://github.com/dipsylala/"}, "description": ".NET Core utility to extract useful data from Detailed Report XML file into CSV format", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Gitlab SCA results report and issue generation", "link": "https://gitlab.com/julz0815/scaresultsreport", "author": {"name": "julz0815", "profile_link": "https://gitlab.com/julz0815/"}, "description": "Rewrites Veracode's Agent Based SCA json results in Gitlab readable report format in (orde)r to display results as dependency scanning on the pipeline run", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Gitlab static results report and issue generation", "link": "https://gitlab.com/julz0815/veracodesastresultsimport", "author": {"name": "julz0815", "profile_link": "https://gitlab.com/julz0815/"}, "description": "A little Java Script will download json results from a Veracode policy or sandbox scan into Gitlab readable report format in order display results as SAST results on the pipeline run and create Gitlab issues on the findings", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "veracode-to-csv", "link": "https://github.com/ctcampbell/veracode-to-csv", "author": {"name": "Ctcampbell", "profile_link": "https://github.com/ctcampbell"}, "description": "This script outputs one CSV file per scan per application profile visible in a Veracode platform account. The output can be imported into Splunk for further analysis.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "VCCLI", "link": "https://github.com/michaelhorty/VCCLI", "author": {"name": "Michaelhorty", "profile_link": "https://github.com/michaelhorty"}, "description": "Veracode AST and Security Labs utility in .NET Core.", "categories": {"category": "Results collection and display", "subcategory": null}}, {"name": "Veracode Container Security Display (Unofficial)", "link": "https://relaxnow.github.io/vcsd/", "author": {"name": "relaxnow", "profile_link": "https://github.com/relaxnow"}, "description": "Display, sort and filter Container Security JSON results.", "categories": {"category": "Results collection and display", "subcategory": null}}]} |