django-DefectDojo icon indicating copy to clipboard operation
django-DefectDojo copied to clipboard

Published 20 hours ago verified publisher icon DefectDojo

support for yaml in generic parser

Open jozseftiborcz opened this issue 2 years ago • 3 comments

Background: we are planning to import manual penetration testing results to defectdojo as well. We would standardize on a simple format to describe findings. I found the generic parser is the closest to what we could use. However, that parser currently support only csv and json formats.

Proposal: Add yaml format to generic parser as it is more natural and easy to edit by hand.

jozseftiborcz avatar Aug 22 '22 17:08 jozseftiborcz

You can do this adjustment: https://defectdojo.github.io/django-DefectDojo/contributing/how-to-write-a-parser/ Take a look at dojo/tools/generic/parser.py CVS and JSON are already supported, so adding YAML should not be that hard.

italvi avatar Aug 23 '22 06:08 italvi

Ok, I'll extend.

jozseftiborcz avatar Aug 23 '22 06:08 jozseftiborcz

Please take a look at https://github.com/DefectDojo/django-DefectDojo/blob/master/readme-docs/CONTRIBUTING.md where it is also documented and what to consider when making a PR

italvi avatar Aug 23 '22 07:08 italvi

@jozseftiborcz, is this still an open topic or can you close this issue?

manuel-sommer avatar May 09 '24 10:05 manuel-sommer

@manuel-sommer I think this is old enough that we can close - they are welcome re-open or create a new issue if there's something left to cover.

mtesauro avatar May 09 '24 22:05 mtesauro