Skip to content
/ oscal-python Public

Container Image Vulnerabilities in OSCAL using Python

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

arun2dot0/oscal-python

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
README.md
README.md
 
 
oscal.py
oscal.py
 
 
oscal_results.json
oscal_results.json
 
 
results.json
results.json
 
 

Repository files navigation

OSCAL Demo for Containers

OSCAL (Open Security Controls Assessment Language) is a standardized framework developed by NIST (National Institute of Standards and Technology) in collaboration with FedRAMP to digitize and automate security authorization processes

Buisness need

Automate Security Assessment and Auditing Process as the standardized formats are machine-readable .Easier sharing of security assessment and control implementation details between parties.

How to use for Containers

Scan any image and generate the Vulnerability report . I am using trivy scan to get the scan output as JSON


trivy image  --format json --output results.json  hello-world-scala:1.0

Note: I have included the results.json as a sample , but you can generate your own

Converting to Image Vulnerabilities to OSCAN format

Now we will convert the results to OSCAL using Python using pydantic library . I am using Python 3.11

pip install pydantic
pip install 'pydantic[email]'
pip install email-validator

Then execute

python3 oscal.py

About

Container Image Vulnerabilities in OSCAL using Python

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages