search

F5-Labs / cryptonice

CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration and supporting protocols such as HTTP2 and DNS.
https://www.f5.com/labs/cryptonice
GNU General Public License v3.0
101 stars 25 forks source link

Support for test output formats like JUnit #37

Open MMerzinger opened 3 years ago

MMerzinger commented 3 years ago

Hello,

I use cryptonice often to verify if my internet facing endpoints are configured properly. This configuration is done in K8s or on a cloud platform such as Azure with Azure Resource Manager templates. As soon as I test changes I need to re-run cryptonice to verify the changes. I can do this in a pipeline as a post-deployment step, but I have to go through the agent logs to check the cryptonice output. To simplify this step, it would be handy if cryptonice supports output formats such as JUnit, which can be visualised by all common CI/CD solutions.

Please let me know what you think about this enhancement.

Thank you and regards Marc

warburtr0n commented 3 years ago

Hi @MMerzinger thanks for the suggestion. This makes complete sense and I'd love to implement it. It's not an insignificant amount of work, however, so I'll add it to the list of enhancements and think about when I might be able to get to it.

MMerzinger commented 3 years ago

Hi @warburtr0n,

thank you for the positive feedback.

I agree about the effort. Will you link the implementation to this issue? I would be happy to test the feature.

Regards Marc