Have STO Ingestion support JSON file format
pending feedback
T
Tangerine Chipmunk
STO Ingestion only supports Sarif file format natively. We need the ability to also ingest JSON and TXT formats.
Log In
Pritesh Chandaliya
pending feedback
Pritesh Chandaliya
We do support Json format, we have our own custom mapping defined. Please refer to this docs for help on defining the format. https://developer.harness.io/docs/security-testing-orchestration/custom-scanning/custom-ingest-reference
Let me know if this works? regarding txt which scanner provides the txt format report for vulnerability findings?
Pritesh Chandaliya
Tangerine Chipmunk were you able to review the docs?
As we already support JSON format but because its not well defined like SERIF you have to provide in the format how we expect. The above docs talks about it. Let me know.
Regarding TXT, which scanner provides the report in TXT format? Can you please provide the exact use case.
Thanks!
T
Tangerine Chipmunk
Pritesh Chandaliya I currently am using a very complex JQ filter to modify the JSON output into the format Harness requires for STO ingestion. This took a significant amount of work on my part and is not ideal.