Project

foreman_cve_scanner

0.0
The project is in a healthy, maintained state
foreman_cve_scanneratix-ag/foreman_cve_scannerHomepageDocumentationSource CodeBug Tracker
Run CVE scan on host and collect report
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
708
Stars
2
Forks
0
Watchers
6
 Releases
Current version
0.0.3
Total releases
3
First release
2024-04-06
Latest release
2025-08-07
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
7
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Licenses
GPL-3.0
Average date of last 50 commits
2024-04-17
Reverse Dependencies
0

 Dependencies

Development

rake
>= 0
rdoc
>= 0

Runtime

foreman_remote_execution
>= 9.0, < 17
 Project Readme

ForemanCveScanner

Plugin to

  1. install trivy/grype CVE scanners on a host using a Foreman Remote Execution (REX) job

  2. run a CVE scan using a REX job, collect the output and generate a Config Report

    image

Introdction here

Installation

See How_to_Install_a_Plugin for how to install Foreman plugins

Usage

  • Run the REX job to install trivy and/or grype
  • Run the REX job to scan a host
  • Go to the Config Report page for a host to view the scan report

TODO

  • Better possiblities to filter the Config Report (maybe an extension to ConfigReport in Foreman)
  • Have a scheduled REX Job to scan the hosts
  • Make it visible on the Host Details page or on Foreman directly, if a high priority CVE on a host occurs
  • Export a CVE scan
  • Deliver trivy / grype via Katello
  • More tests
  • API

Contributing

Fork and send a Pull Request. Thanks!

Copyright

Copyright (c) 2024 Bernhard Suttner / ATIX AG

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see http://www.gnu.org/licenses/.