Commit 2fd50b70 authored by Pierre Smeyers's avatar Pierre Smeyers
Browse files

Merge branch '40-normalize-semgrep-report-file-name' into 'main' 

Resolve "Normalize Semgrep report file name"

Closes #40

See merge request to-be-continuous/defectdojo!63
parents 9941bafe f2f37e2f

README.md

+1 −1
Original line number Diff line number Diff line
@@ -72,7 +72,7 @@ Depending on the security tools you launch, and their configuration, you may hav 
| `DEFECTDOJO_MOBSF_REPORTS`               | path to MobSF JSON reports                                                                                                             | `mobsf*.json`                        |

| `DEFECTDOJO_NODEJSSCAN_REPORTS`          | path to NodeJSScan SARIF reports                                                                                                       | `nodejsscan-report-sarif.json`                        |

| `DEFECTDOJO_NPMAUDIT_REPORTS`            | path to NPM Audit JSON reports                                                                                                         | `npm-audit*.json`                        |

| `DEFECTDOJO_SEMGREP_REPORTS`| Path to Semgrep reports | `reports/semgrep.json`|

| `DEFECTDOJO_SEMGREP_REPORTS`| Path to Semgrep reports | `reports/semgrep.native.json`|

| `SEMGREP_TEMPLATE`| Path to Semgrep template | _none_ |

| `DEFECTDOJO_TESTSSL_REPORTS`             | path to TestSSL CSV reports                                                                                                            | `reports/testssl.native.csv`                        |

| `DEFECTDOJO_ZAP_REPORTS`               | path to Zap xml reports                                                                                                             | `reports/zap.native.xml`            |

kicker.json

+1 −1
Original line number Diff line number Diff line
@@ -110,7 +110,7 @@ 
    {

      "name": "DEFECTDOJO_SEMGREP_REPORTS",

      "description": "Path to Semgrep reports",

      "default": "reports/semgrep.json",

      "default": "reports/semgrep.native.json",

      "advanced": true

    },

    {

templates/gitlab-ci-defectdojo.yml

+1 −1
Original line number Diff line number Diff line
@@ -34,7 +34,7 @@ variables: 
  DEFECTDOJO_TRIVY_REPORTS: "trivy/*.json trivy-*.json reports/docker-trivy-*.native.json reports/py-trivy.trivy.json"

  DEFECTDOJO_HADOLINT_REPORTS: "hadolint-json-*.json reports/docker-hadolint-*.native.json"

  DEFECTDOJO_MOBSF_REPORTS: "mobsf*.json"

  DEFECTDOJO_SEMGREP_REPORTS: "reports/semgrep.json"

  DEFECTDOJO_SEMGREP_REPORTS: "reports/semgrep.native.json"

  DEFECTDOJO_TESTSSL_REPORTS: "reports/testssl.native.csv"

  DEFECTDOJO_SONARQUBE_SINCELEAKPERIOD: "false"

  DEFECTDOJO_SONARQUBE_NOSECURITYHOTSPOT: "true"