Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Extend PURL Scan API endpoint to run another second code scanning tool, for virus detection with clamav #401

Closed
2 tasks done
Tracked by #336
pombredanne opened this issue Apr 25, 2024 · 1 comment
Assignees

Comments

@pombredanne
Copy link
Member

pombredanne commented Apr 25, 2024

Given a PURL, this is about scanning code for virus with clamav. This will be exposed in the purldb

@pombredanne pombredanne changed the title Given a PURL, scan code for virus with clamav Extend PURL Scan API endpoint to run another second code scanning tool, for virus detection with clamav Apr 25, 2024
@keshav-space
Copy link
Member

Completed in:

The simple way to test this is to follow the below steps after installing PurlDB (https://github.com/nexB/purldb?tab=readme-ov-file#installation):

  1. Go to /api/collect/ add PURL for indexing. ex: /api/collect/?purl=pkg:gnu/libiconv@1.17&addon_pipelines=scan_for_virus
  2. Once the indexing has completed go to /api/resources/and filter out resource based on PURL to see the virus_report for malicious resource in extra_data field. ex: /api/resources/?purl=pkg:gnu/libiconv@1.17

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants