search

DefectDojo / django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.
https://defectdojo.com
BSD 3-Clause "New" or "Revised" License
3.66k stars 1.54k forks source link

PDF Report Type not available #2162

Closed dayal18 closed 4 years ago

dayal18 commented 4 years ago

Bug description I might be missing something, but I looked at every possible option and think its a bug. I don't see Report Type - PDF (I see HTML, Asciidoc), but no PDF. I'm not looking at the Report Builder as I know we don't have that feature, but I'm looking for a PDF Report type for Product or Engagements or Tests.

Steps to reproduce Steps to reproduce the behavior:

  1. Go to 'any product or engagement or test'
  2. Click on '3 dots and say Product report or engagement report or test report'
  3. Scroll down to 'middle and select all the options you need like findings? Table of contents?, etc.,'
  4. Next will be drop down where I'll see only HTML and Asciidoc options.

Expected behavior I should probably see PDF report option in the dropdown menu.

Deployment method (select with an X)

Environment information

Sample scan files (optional) If applicable, add sample scan files to help reproduce your problem.

Screenshots (optional) If applicable, add screenshots to help explain your problem.

Console logs (optional) If applicable, add console logs to help explain your problem.

Additional context (optional) Add any other context about the problem here.

Apipia commented 4 years ago

Yeah I noticed this as well. I have been "printing" the HTML report and saving it as a PDF. On a MAC you can select the printer "Save as PDF", and I believe there is a similar functionality in Windows.

dayal18 commented 4 years ago

That does no good, as the report doesn't look authentic. For the work we do in pentesting the applications the report should present its value. This DefectDojo is really good at showing it, but a really good report will be very great.

The other option I can think is to allow all users to see the HTML report, by sharing the link directly. As people will also get familiar with the application.

I have the latest version running 1.5.4.1 and there are issues in this version.

madchap commented 4 years ago

I've never seen a PDF report in Dojo, not sure why it's marked as Bug. I see a ref here, but I believe the docs would need to be refreshed (that predates me here for sure) -- so probably a docbug label needed.

Two options I see or now:

dayal18 commented 4 years ago

Thanks @madchap , yeah I saw that in the document and also I looked at version 1.2 I guess, where the application have "PDF screenshots" in report builder. Thanks for the options I will try my luck to see if there is anything that can help, then I can publish the APIs for others as well.

NRGLine4Sec commented 4 years ago

Hi @dayal18, I request this feature too in #1299. It would be great if you can make it happen.

dayal18 commented 4 years ago

I'll see if I can come up with something interesting, with API's.

PreenaPrakash commented 4 years ago

https://github.com/DefectDojo/django-DefectDojo/issues/224#issuecomment-703239097

please verify this for solution