forked from openclarity/vmclarity
-
Notifications
You must be signed in to change notification settings - Fork 0
/
.families.yaml
87 lines (83 loc) · 1.8 KB
/
.families.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
sbom:
enabled: true
analyzers_list:
- "syft"
- "gomod"
inputs:
- input: "node:slim"
input_type: "image"
# - input: "nginx:1.10"
# input_type: "image"
# merge_with:
# - sbom_path: "nginx.11.cdx.json"
analyzers_config:
analyzer:
output_format: "cyclonedx-json"
scope: "Squashed"
trivy_config:
timeout: 300
registry:
skip-verify-tls: false
use-http: false
auths:
authority: "authority"
username: "username"
password: "password"
token: "token"
vulnerabilities:
enabled: true
scanners_list:
- "grype"
inputs:
# - input: "nginx:1.12"
# input_type: "image"
# - input: "nginx:1.13"
# input_type: "image"
input_from_sbom: true
scanners_config:
scanner:
grype_config:
mode: "LOCAL"
local_grype_config:
update_db: true
db_root_dir: "/tmp/"
listing_url: "https://toolbox-data.anchore.io/grype/databases/listing.json"
scope: "squashed"
remote_grype_config:
grype_server_address: ""
grype_server_timeout: "2m"
registry:
skip-verify-tls: false
use-http: false
auths:
authority: "authority"
username: "username"
password: "password"
token: "token"
secrets:
enabled: false
scanners_list:
- "gitleaks"
inputs:
- input: "./"
input_type: "dir"
scanners_config:
gitleaks:
binary_path: "/usr/local/bin/gitleaks"
exploits:
enabled: true
scanners_list:
- "exploitdb"
inputs: []
input_from_vuln: true
scanners_config:
exploit_db:
base_url: "http://localhost:1326"
misconfiguration:
enabled: true
scanners_list:
- "fake"
inputs:
- input: "./"
input_type: "rootfs"
scanners_configs: {}