Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Updated Documentation on Anchore Enterprise #12058

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Apr 9, 2025
Merged

Updated Documentation on Anchore Enterprise #12058

merged 6 commits into from
Apr 9, 2025

Conversation

Sopuru
Copy link
Contributor

@Sopuru Sopuru commented Mar 20, 2025
edited
Loading

Anchore Engine has reached end-of-life (EOL) and has been replaced by Anchore Enterprise. I have updated the documentation for the Anchore Enterprise Vulnerability Data Parser to reflect recent changes, as detailed in this PR: #12020.

For instance, Anchore-CLI has been replaced with anchorectl. The documentation previously referenced anchore-cli, which has now been corrected, along with an updated data sample.

@Sopuru
Updated Anchore Enterprise Documentation to fit parser. Note Anchore …
2579e65 
…Engine is EOL replacement is Anchore Enterprise
@github-actions github-actions bot added the docs label Mar 20, 2025
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Mar 20, 2025
edited
Loading

DryRun Security Summary

Documentation update for Anchore Engine vulnerability scanning in DefectDojo provides guidance on generating vulnerability reports, highlighting a high-severity CVE-2023-24531 with a CVSS score of 9.8.

Expand for full summary

Summary: Documentation update for Anchore Engine vulnerability scanning in DefectDojo, focusing on generating vulnerability reports with improved guidance and CLI references.

Security Findings:

  • Sample JSON vulnerability report includes a CVE (CVE-2023-24531) with high severity (CVSS 9.8)
    • Vulnerability link uses HTTPS protocol, indicating secure communication
    • High CVSS score suggests significant potential security impact

No additional security vulnerabilities found beyond the noted CVE reference.

View PR in the DryRun Dashboard.

@Sopuru Sopuru changed the title Updated Anchore Enterprise Documentation to fit parser. Note Anchore … Updated Anchore Enterprise Documentation Mar 20, 2025
@Sopuru Sopuru changed the title Updated Anchore Enterprise Documentation Updated Documentation on Anchore Enterprise Mar 20, 2025
@github-actions github-actions bot added the helm label Mar 20, 2025
Maffooch
Maffooch requested changes Mar 20, 2025
View reviewed changes
Copy link
Contributor

@Maffooch Maffooch left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is okay to stay against the master branch since it is docs only, but please update the entry in a way that aligns with #12020

docs/content/en/connecting_your_tools/parsers/file/anchore_engine.md Outdated
Sample Anchore Enterprise Vulnerability scans can be found [here](https://github.com/user-attachments/files/18395292/Vulnerability_Report_2025-01-13T10_09_59.971Z.json).
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It would be best to link to the unit test in the repo once it gets merged in

docs/content/en/connecting_your_tools/parsers/file/anchore_engine.md
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Both formats are still supported, so we do not want to the remove docs for the old version

@github-actions GitHub Actions
Copy link
Contributor

This pull request has conflicts, please resolve those before we can evaluate the pull request.

@github-actions github-actions bot removed the helm label Apr 1, 2025
@Maffooch
Copy link
Contributor

Maffooch commented Apr 3, 2025

Got some conflicts on this one now

@valentijnscholten
Copy link
Member

@Sopuru Could you look at resolving the conflicts? I see on master there is now also info about old format and new format. Not sure how that relates to the docs changes in this PR.

@valentijnscholten valentijnscholten requested review from valentijnscholten and removed request for valentijnscholten April 4, 2025 16:50
@Sopuru Sopuru requested a review from mtesauro as a code owner April 8, 2025 14:14
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 8, 2025

Conflicts have been resolved. A maintainer will review the pull request shortly.

@Maffooch Maffooch changed the base branch from master to bugfix April 8, 2025 15:21
Maffooch
Maffooch approved these changes Apr 8, 2025
View reviewed changes
Copy link
Contributor

@Maffooch Maffooch left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @Sopuru this look great!

@Maffooch Maffooch requested a review from hblankenship April 8, 2025 15:22
mtesauro
mtesauro approved these changes Apr 9, 2025
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@Maffooch Maffooch merged commit e0d1027 into DefectDojo:bugfix Apr 9, 2025
77 of 78 checks passed
Maffooch added a commit that referenced this pull request Apr 21, 2025
@Sopuru @valentijnscholten @Maffooch
Updated Documentation on Anchore Enterprise (#12058)
ee48519 
* Updated Anchore Enterprise Documentation to fit parser. Note Anchore Engine is EOL replacement is Anchore Enterprise

* Fix missing test link in documentation and bumped up chart version

* Update helm/defectdojo/Chart.yaml

Co-authored-by: Cody Maffucci <[email protected]>

* Update anchore_engine.md

---------

Co-authored-by: valentijnscholten <[email protected]>
Co-authored-by: Cody Maffucci <[email protected]>
Maffooch added a commit that referenced this pull request Apr 21, 2025
@Sopuru @valentijnscholten @Maffooch
Updated Documentation on Anchore Enterprise (#12058)
3d6362e 
* Updated Anchore Enterprise Documentation to fit parser. Note Anchore Engine is EOL replacement is Anchore Enterprise

* Fix missing test link in documentation and bumped up chart version

* Update helm/defectdojo/Chart.yaml

Co-authored-by: Cody Maffucci <[email protected]>

* Update anchore_engine.md

---------

Co-authored-by: valentijnscholten <[email protected]>
Co-authored-by: Cody Maffucci <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mtesauro mtesauro mtesauro approved these changes

@valentijnscholten valentijnscholten valentijnscholten approved these changes

@hblankenship hblankenship hblankenship approved these changes

@Maffooch Maffooch Maffooch approved these changes

Assignees
No one assigned
Labels
docs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@Sopuru @Maffooch @valentijnscholten @mtesauro @hblankenship