Merge pull request #179 from StefanScherer/add-app-vulns-if-not-json-output

chris-crone · web-flow · commit c8da19f00166 · 2021-12-11T15:42:21.000+01:00
Add --app-vulns flag only if no json output
diff --git a/cmd/docker-scan/main.go b/cmd/docker-scan/main.go
@@ -124,6 +124,8 @@ func configureProvider(ctx context.Context, dockerCli command.Cli, flags options
 		}
 	} else if flags.groupIssues {
 		return nil, fmt.Errorf("--json flag is mandatory to use --group-issues flag")
+	} else {
+		opts = append(opts, provider.WithAppVulns())
 	}
 	if flags.dockerFilePath != "" {
 		opts = append(opts, provider.WithDockerFile(flags.dockerFilePath))
diff --git a/internal/provider/provider.go b/internal/provider/provider.go
@@ -50,7 +50,7 @@ type Options struct {
 // NewProvider returns default provider options setup with the give options
 func NewProvider(options ...Ops) (Options, error) {
 	provider := Options{
-		flags: []string{"container", "test", "--app-vulns"},
+		flags: []string{"container", "test"},
 		out:   os.Stdout,
 		err:   os.Stderr,
 	}
@@ -151,6 +151,14 @@ func WithGroupIssues() Ops {
 	}
 }
 
+// WithAppVulns scans for applications vulnerabilities as well
+func WithAppVulns() Ops {
+	return func(provider *Options) error {
+		provider.flags = append(provider.flags, "--app-vulns")
+		return nil
+	}
+}
+
 // WithPath update the provider binary with the path from the configuration
 func WithPath(path string) Ops {
 	return func(provider *Options) error {

Original file line number	Diff line number	Diff line change
`@@ -124,6 +124,8 @@ func configureProvider(ctx context.Context, dockerCli command.Cli, flags options`
`124`	`124`	`}`
`125`	`125`	`} else if flags.groupIssues {`
`126`	`126`	`return nil, fmt.Errorf("--json flag is mandatory to use --group-issues flag")`
	`127`	`+ } else {`
	`128`	`+ opts = append(opts, provider.WithAppVulns())`
`127`	`129`	`}`
`128`	`130`	`if flags.dockerFilePath != "" {`
`129`	`131`	`opts = append(opts, provider.WithDockerFile(flags.dockerFilePath))`