Skip to content

Cvereporting#81

Open
tcolgate wants to merge 6 commits into
mainfrom
cvereporting
Open

Cvereporting#81
tcolgate wants to merge 6 commits into
mainfrom
cvereporting

Conversation

@tcolgate
Copy link
Copy Markdown
Collaborator

@tcolgate tcolgate commented May 7, 2026

Description

Fixes #

Checklist

  • PR is linked to the corresponding issue
  • All commits are signed-off (git commit -s ...) to provide the DCO

tcolgate added 4 commits April 30, 2026 12:02
@tcolgate
fix(logging): fix extra log line for non-write of mappings
7d395bb 
Signed-off-by: Tristan Colgate-McFarlane <tristan@cerbos.dev>
@tcolgate
feat(vulncheck): refactor output, allow setting Max Risk
ffe3818 
This includes two changes.

When logging the CVEs that exceed thresholds, this now groups data
by CVE, listing all the impacted images on one line.

It also lets us set the threshold via the grype Risk value instead
of raw CVSS score, which should allow us to reduce

Signed-off-by: Tristan Colgate-McFarlane <tristan@cerbos.dev>
@tcolgate
chore(doc): update some of hte docs for the new vuln check options
6b793f9 
Signed-off-by: Tristan Colgate-McFarlane <tristan@cerbos.dev>
@tcolgate
feat(vulncheck): log the cves in alphabetical order
8aaa808 
Signed-off-by: Tristan Colgate-McFarlane <tristan@cerbos.dev>
@tcolgate
feat(vulcheck): report unused CVE ignores
338b525 
This adds a log line that will highlight any CVEs that were included
in the ignore rules, but which were not present in any image, to make
it easier to remove old ignores.

Signed-off-by: Tristan Colgate-McFarlane <tristan@cerbos.dev>
@tcolgate
working report
0c45fab 
Signed-off-by: Tristan Colgate-McFarlane <tristan@cerbos.dev>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tcolgate