Google Artifact Security Scan
Google Cloud has a Artifact Registry that you can enable security scans https://cloud.google.com/artifact-registry/docs/analysis
Once a scan is completed, results can be pulled via API/gcloud https://cloud.google.com/artifact-analysis/docs/metadata-storage and exported to json
gcloud artifacts docker images describe northamerica-northeast1-docker.pkg.dev/test-cloud/testing/testing-image@sha256:decode00000000000000000000000000000000000000000000000deadbeef --show-package-vulnerability --format=json
Sample File
Please attach a sample file and the format of the file (xml, json, csv).
vulns.json.txt
Had to rename ending to .txt but its a json file.
Minor censorship was done on the file, format should be the same but repo/project/image names are faked.
Google Artifact Security Scan
Google Cloud has a Artifact Registry that you can enable security scans https://cloud.google.com/artifact-registry/docs/analysis
Once a scan is completed, results can be pulled via API/gcloud https://cloud.google.com/artifact-analysis/docs/metadata-storage and exported to json
gcloud artifacts docker images describe northamerica-northeast1-docker.pkg.dev/test-cloud/testing/testing-image@sha256:decode00000000000000000000000000000000000000000000000deadbeef --show-package-vulnerability --format=jsonSample File
Please attach a sample file and the format of the file (xml, json, csv).
vulns.json.txt
Had to rename ending to .txt but its a json file.
Minor censorship was done on the file, format should be the same but repo/project/image names are faked.