scan2html icon indicating copy to clipboard operation
scan2html copied to clipboard
verified publisher icon fatihtokus

Show CVSS score in the vulnerability table

Open fatihtokus opened this issue 1 year ago • 3 comments

fatihtokus avatar Jul 11 '24 15:07 fatihtokus

@fatihtokus I think this issue may not be resolved yet, unless it was resolved by adding a non-default command line switch? Here's a scan of the prometheus Go binary in the https://github.com/prometheus/prometheus/releases/download/v3.2.1/prometheus-3.2.1.linux-amd64.tar.gz package. CVSS score columns are empty.

Image Command used:

$ trivy scan2html rootfs ./prometheus --with-epss report.html

SHA256 for check:

$ sha256sum ./prometheus
d56a50d0a67684cd29a5e204e627cfc833c60df3d3a9743349817232b6979d86  ./prometheus

huornlmj avatar May 29 '25 10:05 huornlmj

@huornlmj , we are looking into this and will come back to you soon

fatihtokus avatar May 29 '25 16:05 fatihtokus

Hi @huornlmj ,

We have fixed it, please check it in the new version 0.3.8:

Image

fatihtokus avatar Jun 02 '25 20:06 fatihtokus