Vulnerable artifact locations not included in CVE scan markdown report

docker / scout-cli

Docker Scout CLI

https://docker.com/products/docker-scout

Other

252 stars 60 forks source link

Vulnerable artifact locations not included in CVE scan markdown report #50

Open bm402 opened 9 months ago

bm402 commented 9 months ago

When I run the following command to create a markdown vulnerability report:

docker scout cves --locations --format markdown --output report.md <image>

The vulnerable artifact locations are not included in the markdown report. Having them in the report makes it much easier to identify and remediate the vulnerable components, so it would be great if they were included!

version: 0.24.1 (go1.21.0 - darwin/arm64)
git commit: 67cb4ef78bd69545af0e223ba5fb577b27094505

christophbrejla commented 1 month ago

Hello, i would like to upvote this, as we use the markdown format as well and having the locations included makes it so much easier to fix warnings. Would be great if you could implement this!

using latest version 1.8.0