Add a folder with go templates

[YevheniiPokhvalii]

It would be nice to have a go templates folder with examples, like Trivy has: https://github.com/aquasecurity/trivy/tree/main/contrib

Their templates are not compatible with Grype, unfortunately.
I need an XML JUnit output format and it's a pain to create a template from scratch.

[YevheniiPokhvalii]

I made a simple JUnit XML Go template that works with Grype. It might be useful to someone:

grype docker_image -o template -t grype-junit.tpl

<?xml version="1.0" ?>
<testsuites name="grype-junit">
{{- $failures := len $.Matches }}
    <testsuite tests="{{ $failures }}" failures="{{ $failures }}" name="{{ $.Distro.Name }}:{{ $.Distro.Version }}" errors="0" skipped="0">
        <properties>
            <property name="type" value="{{ $.Distro.Name }}"></property>
        </properties>
        {{- range .Matches }}
        <testcase classname="{{ .Artifact.Name }}-{{ .Artifact.Version }} ({{ .Artifact.Type }})" name="[{{ .Vulnerability.Severity }}] {{ .Vulnerability.ID }}">
            <failure message="{{ .Artifact.Name }}: {{ .Vulnerability.ID }}" type="description">{{ .Vulnerability.Description }} {{ .Artifact.CPEs }} {{ .Vulnerability.DataSource }}</failure>
        </testcase>
        {{- end }}
    </testsuite>
</testsuites>

[spiffcs]

This sounds like a good idea! I'll throw it into our backlog for a team member to grab when they have cycles.

We also would love to have community PR that gets this effort started -

The best kind of PR would be an example CSV or HTML template that we could use to help people get started

If someone contributes this please put your name at the top of the template so users can understand who to query if there are any future issues =)

[spiffcs]

@YevheniiPokhvalii #1343 was merged - so we now have a folder where you can contribute your Junit template along with some starter documentation. Let me know if you need help getting it contributed!

[anaynayak]

Thanks @YevheniiPokhvalii for sharing that snippet. Are you planning to contribute that template? Otherwise I don't mind helping and would love to see it integrated into grype.

[kzantow]

Yeah, that looks like a great one to add to the sample templates here: https://github.com/anchore/grype/tree/main/templates -- I'd love to see you get credit for the contribution @YevheniiPokhvalii !

[YevheniiPokhvalii]

Thank you. Since this one is useful, I created a PR.