prowler icon indicating copy to clipboard operation
prowler copied to clipboard
verified publisher icon prowler-cloud

JSON Compliance report

Open petrobubka opened this issue 8 months ago • 2 comments

New feature motivation

Currently, when performing an in-cluster Kubernetes scan, Prowler generates:

  • A general scan report in JSON format (e.g., .ocsf.json)

  • A compliance report (e.g., CIS_1.10_KUBERNETES) only in CSV format

This creates a gap when integrating results with automation tools, dashboards, or APIs that rely on JSON

Solution Proposed

Feature Request Please consider adding an option to export compliance reports in JSON format, similar to how the general scan results are handled. This would help:

  • Unify reporting formats

  • Simplify parsing in CI/CD pipelines

  • Enable better integration with tools like Elasticsearch, custom dashboards, and alerting systems

Ideal Outcome A new output file such as: prowler-output-<scan_id>_cis_1.10_kubernetes.json

If this is already possible and I’ve missed an option/flag, please let me know.

Describe alternatives you've considered

Additional context

No response

petrobubka avatar Apr 14 '25 14:04 petrobubka

Hello @petrobubka,

Thank you very much for your suggestion, that’s definitely an interesting feature and a valuable idea.

Exporting compliance reports in JSON format is something we’ll certainly keep in mind as we continue to evolve the tool, I'll talk with the team and for sure we'll add this feature to our backlog.

We really appreciate you taking the time to share this with us!

danibarranqueroo avatar Apr 15 '25 07:04 danibarranqueroo

@danibarranqueroo and @MrCloudSec and @petrobubka I think I have some similar interests and recently opened https://github.com/Santiago-Labs/go-ocsf/pull/13 which could be helpful in the implementation of this issue.

trumant avatar May 01 '25 15:05 trumant