New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enhanced data schema for Cloud-native Workload Vulnerability Data Storage for Analytics, Reporting and Policy Evaluation. #145
Enhanced data schema for Cloud-native Workload Vulnerability Data Storage for Analytics, Reporting and Policy Evaluation. #145
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Completed addressing of all review comments. @danielpacak please take a look and let us know if all looks good
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
I think this is the right way to handle the vuln data. With this schema refactor, it's very friendly to do ad-hoc query that is a feature we're planning to support later.
@danielpacak and @steven-zou - one query.. as i was working on a PoC to convert the raw report to the normalized schema, I see that the current table
Let me know your views |
782091e
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
feat: Store vulnerability report from scanner into a relational format Convert vulnerability report JSON obtained from scanner into a relational format describe in:goharbor/community#145 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
… schema Signed-off-by: prahaladd <prahaladd@vmware.com>
60f8a5a
to
b6ae36b
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
👋 @prahaladdarkin I left a few comments to tidy up this proposal and align it with the actual Go code.
Signed-off-by: prahaladd <prahaladd@vmware.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Done. Incorporated all review comments and resolved outstanding conversations.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The feature will be delivered in V2.2.
This proposal will lay the foundational work that allow advanced reporting, analytics, policy evaluation and integration with third-party systems providing these capabilities such as Open Policy Agent.
The contents of this proposal are based on the document describing the Cloud Native Workload - Common Vulnerability Evaluation and Reporting Framework.