Open yene opened 11 months ago
@another-rex does this seem like something that would fit under "groups"
?
@oliverchang please consider this issue, it would enable scripting in build pipelines, something like osv-scanner -r -json --format json | jq '.[]....score >= 9' osv-scanner -r -json --format json | jq '.[]....severity == critical'
thank you for your time.
Hi there.
I'd be happy to jump into this issue and suggest changes to the structs and JSON generation.
Kind regards, Omri
Happy to take contributions!,
I think this is a pretty good idea to put the MaxSeverity calculation directly onto the Group
struct, I just haven't had time to do it yet.
feature request
The markdown and table output include a CVSS score, calculated by MaxSeverity(). It would be really handy to have this score in the
results[].packages[].vulnerabilities[]
object for easy scripting against the output.Note: Since the severity score is so hard to read for humans, maybe max severity should be part of the Vulnerability struct.
thank you