Documentation
¶
Index ¶
- Constants
- func FilterLegacyArtifactIdentityRecords(records []manifest.IdentityRecord) []manifest.IdentityRecord
- func IsIdentityBearingFinding(f Finding) bool
- func IsInventoryBearingFinding(f Finding) bool
- func IsLegacyArtifactIdentityCandidate(toolType, toolID, agentID string) bool
- func SortFindings(findings []Finding)
- type Evidence
- type Finding
- type LocationRange
- type ParseError
Constants ¶
View Source
const ( CheckResultPass = "pass" CheckResultFail = "fail" SeverityCritical = "critical" SeverityHigh = "high" SeverityMedium = "medium" SeverityLow = "low" SeverityInfo = "info" DiscoveryMethodStatic = "static" )
Variables ¶
This section is empty.
Functions ¶
func FilterLegacyArtifactIdentityRecords ¶ added in v1.0.9
func FilterLegacyArtifactIdentityRecords(records []manifest.IdentityRecord) []manifest.IdentityRecord
FilterLegacyArtifactIdentityRecords preserves only lifecycle-bearing tool identities from older artifacts.
func IsIdentityBearingFinding ¶
IsIdentityBearingFinding returns whether a finding participates in lifecycle/regress identity state.
func IsInventoryBearingFinding ¶ added in v1.0.8
IsInventoryBearingFinding returns whether a finding should materialize inventory entities.
func IsLegacyArtifactIdentityCandidate ¶ added in v1.0.9
IsLegacyArtifactIdentityCandidate rejects only the non-tool identities older runtimes could materialize. When older artifacts do not retain enough type information to decide safely, this helper preserves them.
func SortFindings ¶
func SortFindings(findings []Finding)
Types ¶
type Finding ¶
type Finding struct {
FindingType string `json:"finding_type"`
RuleID string `json:"rule_id,omitempty"`
CheckResult string `json:"check_result,omitempty"`
Severity string `json:"severity"`
DiscoveryMethod string `json:"discovery_method"`
Remediation string `json:"remediation,omitempty"`
ToolType string `json:"tool_type"`
Location string `json:"location"`
LocationRange *LocationRange `json:"location_range,omitempty"`
Repo string `json:"repo,omitempty"`
Org string `json:"org"`
Detector string `json:"detector,omitempty"`
Permissions []string `json:"permissions,omitempty"`
Autonomy string `json:"autonomy,omitempty"`
Evidence []Evidence `json:"evidence,omitempty"`
ParseError *ParseError `json:"parse_error,omitempty"`
}
Finding is the canonical detector/policy output contract.
func NormalizeFinding ¶
type LocationRange ¶ added in v1.0.8
Source Files
Click to show internal directories.
Click to hide internal directories.