search

archerysec / archerysec-cli

A commandline tool that wraps the Archerysec REST API for controlling Archery and executing quick, targeted scans.
Other
11 stars 2 forks source link

Uploading report fails #7

Closed VivianaCaro closed 3 years ago

VivianaCaro commented 3 years ago

Hello,

I'm trying to upload a Dependency Check report using admin credentials, but I'm getting an Authentication error message.

Version used: '3.1.4'

Command used to upload:

archerysec-cli -s http://myarcherysechost -u admin -p adminpwd --upload --file_type=XML --file=dependency-check-report.xml --TARGET="poc-node" --project_id=nnnnnn --scanner=dependencycheck

Error message:

{"detail":"Authentication credentials were not provided."}

I would appreciate any guide on the matter,

Thank you!

ps: also I'm not very sure about using --scanner=dependencycheck due to the info display on the help

 --scanner=SCANNER   Select scanners [ zap_scan, burp_scan, arachni,
                        netsparker, webinspect, banditscan]

ps2: downgrading to "3.1.2" version solved my problem

i4mmaddy commented 3 years ago

Hi @VivianaCaro, did you resolved this issue? I got the same error in my setup.

anandtiwarics commented 3 years ago

Hi @i4mmaddy @VivianaCaro

archerysec-cli Version: '3.1.4' only work with archerysec latest version 2.0.1

i4mmaddy commented 3 years ago

Okay thanks, @anandtiwarics, is there any way to upload the scan result file to archerysec from the GitLab pipeline?

anandtiwarics commented 3 years ago

yes, you can use the archerysec-cli that helps you to upload the report into archerysec portal. you can take the example from github action script : https://github.com/archerysec/archerysec/blob/3e7e2b621c5c47fa367877577bbad9d5818919b0/.github/workflows/integration-test.yml#L26