local

package

v0.0.0-...-82b092a Latest Latest Go to latest Published: Feb 25, 2023 License: Apache-2.0 Imports: 24 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/w3security/cvescan

Documentation ¶

Index ¶

Variables
func ShouldScanMisconfigOrRbac(scanners types.Scanners) bool
type Applier
type ApplierApplyLayersArgs
type ApplierApplyLayersExpectation
type ApplierApplyLayersReturns
type MockApplier
type OspkgDetector
type Scanner
- func NewScanner(applier Applier, ospkgDetector OspkgDetector, vulnClient vulnerability.Client) Scanner
- func (s Scanner) MisconfsToResults(misconfs []ftypes.Misconfiguration) types.Results
- func (s Scanner) Scan(ctx context.Context, target, artifactKey string, blobKeys []string, ...) (types.Results, ftypes.OS, error)

Constants ¶

This section is empty.

Variables ¶

View Source

var SuperSet = wire.NewSet(
	vulnerability.SuperSet,
	applier.NewApplier,
	wire.Bind(new(Applier), new(applier.Applier)),
	wire.Struct(new(ospkgDetector.Detector)),
	wire.Bind(new(OspkgDetector), new(ospkgDetector.Detector)),
	NewScanner,
)

SuperSet binds dependencies for Local scan

Functions ¶

func ShouldScanMisconfigOrRbac ¶

func ShouldScanMisconfigOrRbac(scanners types.Scanners) bool

Types ¶

type Applier ¶

type Applier interface {
	ApplyLayers(artifactID string, blobIDs []string) (detail ftypes.ArtifactDetail, err error)
}

Applier defines operation to scan image layers

type ApplierApplyLayersArgs ¶

type ApplierApplyLayersArgs struct {
	ArtifactID         string
	ArtifactIDAnything bool
	BlobIDs            []string
	BlobIDsAnything    bool
}

type ApplierApplyLayersExpectation ¶

type ApplierApplyLayersExpectation struct {
	Args    ApplierApplyLayersArgs
	Returns ApplierApplyLayersReturns
}

type ApplierApplyLayersReturns ¶

type ApplierApplyLayersReturns struct {
	Detail types.ArtifactDetail
	Err    error
}

type MockApplier ¶

type MockApplier struct {
	mock.Mock
}

MockApplier is an autogenerated mock type for the Applier type

func (*MockApplier) ApplyApplyLayersExpectation ¶

func (_m *MockApplier) ApplyApplyLayersExpectation(e ApplierApplyLayersExpectation)

func (*MockApplier) ApplyApplyLayersExpectations ¶

func (_m *MockApplier) ApplyApplyLayersExpectations(expectations []ApplierApplyLayersExpectation)

func (*MockApplier) ApplyLayers ¶

func (_m *MockApplier) ApplyLayers(artifactID string, blobIDs []string) (types.ArtifactDetail, error)

ApplyLayers provides a mock function with given fields: artifactID, blobIDs

type OspkgDetector ¶

type OspkgDetector interface {
	Detect(imageName, osFamily, osName string, repo *ftypes.Repository, created time.Time, pkgs []ftypes.Package) (detectedVulns []types.DetectedVulnerability, eosl bool, err error)
}

OspkgDetector defines operation to detect OS vulnerabilities

type Scanner ¶

type Scanner struct {
	// contains filtered or unexported fields
}

Scanner implements the OspkgDetector and LibraryDetector

func NewScanner ¶

func NewScanner(applier Applier, ospkgDetector OspkgDetector, vulnClient vulnerability.Client) Scanner

NewScanner is the factory method for Scanner

func (Scanner) MisconfsToResults ¶

func (s Scanner) MisconfsToResults(misconfs []ftypes.Misconfiguration) types.Results

This function is exported for cvescan-plugin-aqua purposes only

func (Scanner) Scan ¶

func (s Scanner) Scan(ctx context.Context, target, artifactKey string, blobKeys []string, options types.ScanOptions) (types.Results, ftypes.OS, error)

Scan scans the artifact and return results.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL