Skip to content
/ gcp-scc-iac-validation-utils Public

Utility scripts for handling the response from `gcloud scc iac-validation-reports create` command.

License

Apache-2.0 license
1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

google/gcp-scc-iac-validation-utils

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

AOSS - IaC scanning GCB Plugin

Description

scc-iac-scan-report-utils provide script for handling the result from gcloud scc iac-validation-reports create. Currently it offers the following utility files

SARIFConverter

SARIFConverter converters the report generated by "gcloud scc iac-validation-reports create" command to a more popular SARIF format.

Validator

It checks the scc iac-validation-report against limits set by failure criteria and returns the validation outcome.

  • These validation failure criteria could be passed as an expression in a form of input to the script.

    'Critical:2,Low:5,Operator:or'

  • If no expression is passed to the scipt following default criteria is used to perform these validation.

    'Critical:1,High:1,Medium:1,Low:1,Operator:or'

Note

  • For Operator only AND and OR operators are supported.
  • Each expression should have an operator only once.
  • All Severity: Critical, High, Medium, Low can be present in the expression at most once.

About

Utility scripts for handling the response from `gcloud scc iac-validation-reports create` command.

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages