crda

package
v0.4.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 5, 2021 License: Apache-2.0 Imports: 14 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	Low      = "low"
	Medium   = "medium"
	High     = "high"
	Critical = "critical"
)

Variables

This section is empty.

Functions

func NormalizeSeverity 

func NormalizeSeverity(severity string) claircore.Severity

NormalizeSeverity takes a string[1] and normalizes it to a claircore.Severity. [1] https://github.com/fabric8-analytics/fabric8-analytics-server/blob/master/api_specs/v2/stack_analyses.yaml#L178

Types

type Analyses 

type Analyses struct {
	Vulnerabilities []Vulnerability `json:"vulnerability"`
}

type Factory added in v0.3.2 

type Factory struct {
	// contains filtered or unexported fields
}

Factory contains the configuration to connect with CRDA remote matcher.

func (*Factory) Configure added in v0.3.2 

func (f *Factory) Configure(ctx context.Context, cfg driver.MatcherConfigUnmarshaler, c *http.Client) error

MatcherFactory implements driver.MatcherConfigurable.

func (*Factory) Matcher added in v0.3.2 

func (f *Factory) Matcher(ctx context.Context) (driver.Matcher, error)

MatcherFactory implements driver.MatcherFactory.

type FactoryConfig added in v0.3.2 

type FactoryConfig struct {
	URL string `json:"url" yaml:"url"`
}

To decode the config.

type Matcher 

type Matcher struct {
	// contains filtered or unexported fields
}

Matcher attempts to correlate discovered python packages with reported vulnerabilities.

func NewMatcher 

func NewMatcher(opt ...Option) (*Matcher, error)

NewMatcher returns a configured Matcher or reports an error.

func (*Matcher) Filter 

func (*Matcher) Filter(record *claircore.IndexRecord) bool

Filter implements driver.Matcher.

func (*Matcher) Name 

func (*Matcher) Name() string

Name implements driver.Matcher.

func (*Matcher) Query 

func (*Matcher) Query() []driver.MatchConstraint

Query implements driver.Matcher.

func (*Matcher) QueryRemoteMatcher 

func (m *Matcher) QueryRemoteMatcher(ctx context.Context, records []*claircore.IndexRecord) (map[string][]*claircore.Vulnerability, error)

QueryRemoteMatcher implements driver.RemoteMatcher.

func (*Matcher) Vulnerable 

func (*Matcher) Vulnerable(ctx context.Context, record *claircore.IndexRecord, vuln *claircore.Vulnerability) (bool, error)

Vulnerable implements driver.Matcher.

type Option 

type Option func(*Matcher) error

Option controls the configuration of a Matcher.

func WithClient 

func WithClient(c *http.Client) Option

WithClient sets the http.Client that the matcher should use for requests.

If not passed to NewMatcher, http.DefaultClient will be used.

func WithRequestConcurrency 

func WithRequestConcurrency(requestConcurrency int) Option

WithRequestConcurrency sets the concurrency limit for the network calls.

If not passed to NewMatcher, a defaultRequestConcurrency will be used.

func WithURL 

func WithURL(url *url.URL) Option

WithHost sets the server host name that the matcher should use for requests.

If not passed to NewMatcher, defaultHost will be used.

type VulnReport 

type VulnReport struct {
	RecommendedVersion string   `json:"recommended_versions"`
	Message            string   `json:"message"`
	Analyses           Analyses `json:"component_analyses"`
}

type Vulnerability 

type Vulnerability struct {
	ID       string   `json:"vendor_cve_ids"`
	CVSS     string   `json:"cvss"`
	CVES     []string `json:"cve_ids"`
	Severity string   `json:"severity"`
	Title    string   `json:"title"`
	URL      string   `json:"url"`
	FixedIn  []string `json:"fixed_in"`
}

Build struct to model CRDA V2 ComponentAnalysis response which delivers Snyk sourced Vulnerability information.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.