Skip to content

Commit f054313

Browse files
karmada-botkarmada-bot
authored
Merge pull request #4567 from zhzhuang-zju/format
add flag -f format to scan-image-vuln.sh
2 parents c345831 + 103d558 commit f054313

File tree

1 file changed

+11
-7
lines changed

1 file changed

+11
-7
lines changed

hack/scan-image-vuln.sh

+11-7
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ set -o pipefail
2424

2525
function usage() {
2626
echo "Usage:"
27-
echo " hack/scan-image-vuln.sh [-i imageRef] [-r registry] [-v version] [-s skip-image-generation] [-h]"
27+
echo " hack/scan-image-vuln.sh [-i imageRef] [-r registry] [-v version] [-s skip-image-generation] [-f format][-h]"
2828
echo "Examples:"
2929
echo " # starts a images scanning with specific image provided"
3030
echo " hack/scan-image-vuln.sh -i docker.io/karmada/karmada-controller-manager:v1.8.0"
@@ -40,13 +40,11 @@ function usage() {
4040
echo " r registry: registry of images"
4141
echo " v version: version of images"
4242
echo " s skip-image-generation: whether to skip image generation"
43+
echo " f format: output format(table). must be one of ['table' 'json' 'template' 'sarif' 'cyclonedx' 'spdx' 'spdx-json' 'github' 'cosign-vuln']"
4344
echo " h: print help information"
4445
}
4546

46-
SKIP_IMAGE_GENERAION="false"
47-
IMAGEREF=""
48-
49-
while getopts 'h:si:r:v:' OPT; do
47+
while getopts 'h:si:r:v:f:' OPT; do
5048
case $OPT in
5149
h)
5250
usage
@@ -60,13 +58,19 @@ while getopts 'h:si:r:v:' OPT; do
6058
REGISTRY=${OPTARG};;
6159
v)
6260
VERSION=${OPTARG};;
61+
f)
62+
FORMAT=${OPTARG};;
6363
?)
6464
usage
6565
exit 1
6666
;;
6767
esac
6868
done
6969

70+
FORMAT=${FORMAT:-"table"}
71+
SKIP_IMAGE_GENERAION=${SKIP_IMAGE_GENERAION:-"false"}
72+
IMAGEREF=${IMAGEREF:-""}
73+
7074
source "hack/util.sh"
7175

7276
echo -n "Preparing: 'trivy' existence check - "
@@ -79,7 +83,7 @@ fi
7983

8084
if [ ${IMAGEREF} ];then
8185
echo "---------------------------- the image scanning result of Image <<${IMAGEREF}>> ----------------------------"
82-
trivy image --format table --ignore-unfixed --vuln-type os,library --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL -q ${IMAGEREF}
86+
trivy image --format ${FORMAT} --ignore-unfixed --vuln-type os,library --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL -q ${IMAGEREF}
8387
exit 0
8488
fi
8589

@@ -110,5 +114,5 @@ for image in ${IMAGE_ARRAR[@]}
110114
do
111115
imageRef="$REGISTRY/$image:$VERSION"
112116
echo "---------------------------- the image scanning result of Image <<$imageRef>> ----------------------------"
113-
trivy image --format table --ignore-unfixed --vuln-type os,library --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL -q $imageRef
117+
trivy image --format ${FORMAT} --ignore-unfixed --vuln-type os,library --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL -q $imageRef
114118
done

0 commit comments

Comments
 (0)