@opensip-cli/tool-trivy 0.1.15
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +202 -0
- package/NOTICE +8 -0
- package/README.md +33 -0
- package/dist/__tests__/tool.test.d.ts +19 -0
- package/dist/__tests__/tool.test.d.ts.map +1 -0
- package/dist/__tests__/tool.test.js +234 -0
- package/dist/__tests__/tool.test.js.map +1 -0
- package/dist/__tests__/worker-e2e.test.d.ts +32 -0
- package/dist/__tests__/worker-e2e.test.d.ts.map +1 -0
- package/dist/__tests__/worker-e2e.test.js +339 -0
- package/dist/__tests__/worker-e2e.test.js.map +1 -0
- package/dist/index.d.ts +11 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +11 -0
- package/dist/index.js.map +1 -0
- package/dist/tool.d.ts +87 -0
- package/dist/tool.d.ts.map +1 -0
- package/dist/tool.js +152 -0
- package/dist/tool.js.map +1 -0
- package/package.json +133 -0
package/package.json
ADDED
|
@@ -0,0 +1,133 @@
|
|
|
1
|
+
{
|
|
2
|
+
"name": "@opensip-cli/tool-trivy",
|
|
3
|
+
"version": "0.1.15",
|
|
4
|
+
"license": "Apache-2.0",
|
|
5
|
+
"description": "External Tool Adapter for Trivy — wraps the trivy vulnerability + misconfiguration scanner as an opensip-cli tool (opensip trivy)",
|
|
6
|
+
"keywords": [
|
|
7
|
+
"opensip-cli",
|
|
8
|
+
"static-analysis",
|
|
9
|
+
"code-quality"
|
|
10
|
+
],
|
|
11
|
+
"repository": {
|
|
12
|
+
"type": "git",
|
|
13
|
+
"url": "https://github.com/opensip-ai/opensip-cli.git",
|
|
14
|
+
"directory": "packages/tool-trivy"
|
|
15
|
+
},
|
|
16
|
+
"homepage": "https://github.com/opensip-ai/opensip-cli",
|
|
17
|
+
"bugs": {
|
|
18
|
+
"url": "https://github.com/opensip-ai/opensip-cli/issues"
|
|
19
|
+
},
|
|
20
|
+
"type": "module",
|
|
21
|
+
"main": "./dist/index.js",
|
|
22
|
+
"types": "./dist/index.d.ts",
|
|
23
|
+
"exports": {
|
|
24
|
+
".": "./dist/index.js"
|
|
25
|
+
},
|
|
26
|
+
"files": [
|
|
27
|
+
"dist",
|
|
28
|
+
"LICENSE",
|
|
29
|
+
"NOTICE"
|
|
30
|
+
],
|
|
31
|
+
"opensipTools": {
|
|
32
|
+
"kind": "tool",
|
|
33
|
+
"id": "trivy",
|
|
34
|
+
"identity": {
|
|
35
|
+
"name": "trivy"
|
|
36
|
+
},
|
|
37
|
+
"stableId": "a26ea0eb-ee3b-4e22-a3f3-7e1f93e16000",
|
|
38
|
+
"apiVersion": 1,
|
|
39
|
+
"requires": [
|
|
40
|
+
{
|
|
41
|
+
"resource": "subprocess",
|
|
42
|
+
"reason": "Executes the user-installed trivy binary via execFile (no shell)"
|
|
43
|
+
},
|
|
44
|
+
{
|
|
45
|
+
"resource": "filesystem",
|
|
46
|
+
"reason": "Reads the project working tree and writes the raw scan artifact under .runtime/artifacts"
|
|
47
|
+
}
|
|
48
|
+
],
|
|
49
|
+
"commands": [
|
|
50
|
+
{
|
|
51
|
+
"name": "trivy",
|
|
52
|
+
"description": "Scan the project filesystem for vulnerabilities and misconfigurations (Trivy)",
|
|
53
|
+
"aliases": [],
|
|
54
|
+
"commonFlags": [
|
|
55
|
+
"json",
|
|
56
|
+
"cwd",
|
|
57
|
+
"quiet",
|
|
58
|
+
"verbose",
|
|
59
|
+
"debug",
|
|
60
|
+
"reportTo",
|
|
61
|
+
"apiKey",
|
|
62
|
+
"open"
|
|
63
|
+
],
|
|
64
|
+
"options": [
|
|
65
|
+
{
|
|
66
|
+
"flag": "--gate-save",
|
|
67
|
+
"description": "Architecture-gate: save current findings as baseline in the project SQLite store (mutually exclusive with --gate-compare)",
|
|
68
|
+
"default": false
|
|
69
|
+
},
|
|
70
|
+
{
|
|
71
|
+
"flag": "--gate-compare",
|
|
72
|
+
"description": "Architecture-gate: compare current findings against the saved baseline; exit 1 on regression",
|
|
73
|
+
"default": false
|
|
74
|
+
}
|
|
75
|
+
],
|
|
76
|
+
"scope": "project",
|
|
77
|
+
"output": "raw-stream",
|
|
78
|
+
"rawStreamReason": "runtime-render-dispatch"
|
|
79
|
+
},
|
|
80
|
+
{
|
|
81
|
+
"name": "doctor",
|
|
82
|
+
"description": "Check that the trivy binary is installed and ready",
|
|
83
|
+
"parent": "trivy",
|
|
84
|
+
"commonFlags": [
|
|
85
|
+
"json",
|
|
86
|
+
"cwd"
|
|
87
|
+
],
|
|
88
|
+
"scope": "none",
|
|
89
|
+
"output": "raw-stream",
|
|
90
|
+
"rawStreamReason": "diagnostic-gate"
|
|
91
|
+
},
|
|
92
|
+
{
|
|
93
|
+
"name": "version",
|
|
94
|
+
"description": "Print the resolved trivy binary version",
|
|
95
|
+
"parent": "trivy",
|
|
96
|
+
"commonFlags": [
|
|
97
|
+
"json",
|
|
98
|
+
"cwd"
|
|
99
|
+
],
|
|
100
|
+
"scope": "none",
|
|
101
|
+
"output": "raw-stream",
|
|
102
|
+
"rawStreamReason": "diagnostic-gate"
|
|
103
|
+
}
|
|
104
|
+
],
|
|
105
|
+
"config": {
|
|
106
|
+
"namespace": "trivy",
|
|
107
|
+
"schema": {
|
|
108
|
+
"type": "object",
|
|
109
|
+
"properties": {
|
|
110
|
+
"binaries": {
|
|
111
|
+
"type": "object"
|
|
112
|
+
}
|
|
113
|
+
}
|
|
114
|
+
}
|
|
115
|
+
}
|
|
116
|
+
},
|
|
117
|
+
"dependencies": {
|
|
118
|
+
"typescript": "~6.0.3",
|
|
119
|
+
"@opensip-cli/external-tool-adapter": "0.1.15",
|
|
120
|
+
"@opensip-cli/contracts": "0.1.15",
|
|
121
|
+
"@opensip-cli/core": "0.1.15"
|
|
122
|
+
},
|
|
123
|
+
"devDependencies": {
|
|
124
|
+
"@types/node": "^24.13.2",
|
|
125
|
+
"vitest": "^4.1.8"
|
|
126
|
+
},
|
|
127
|
+
"scripts": {
|
|
128
|
+
"build": "tsc",
|
|
129
|
+
"test": "vitest run --passWithNoTests",
|
|
130
|
+
"typecheck": "tsc --noEmit",
|
|
131
|
+
"clean": "rm -rf dist"
|
|
132
|
+
}
|
|
133
|
+
}
|