Ruud Senden
Ruud Senden
``` Caused by: java.lang.NullPointerException at com.fortify.vulnexport.spi.target.vuln.consumer.to.file.stream.MultiOutputStreamFactory$MultiOutputStream.createFileOutputStream(MultiOutputStreamFactory.java:88) at com.fortify.vulnexport.spi.target.vuln.consumer.to.file.stream.MultiOutputStreamFactory$MultiOutputStream.(MultiOutputStreamFactory.java:79) at com.fortify.vulnexport.spi.target.vuln.consumer.to.file.stream.MultiOutputStreamFactory.createOutputStream(MultiOutputStreamFactory.java:53) ``` It seems like `file.getParentFile()` at https://github.com/fortify/FortifyVulnerabilityExporter/blob/4d8e14b70e7c93e8464607f569803fe27849402b/FortifyVulnerabilityExporter-spi-to/src/main/java/com/fortify/vulnexport/spi/target/vuln/consumer/to/file/stream/MultiOutputStreamFactory.java#L87 may return null if a user specifies a simple file name (rather than...
### Rationale We currently provide [FortifyBugTrackerUtility (FBTU)](https://github.com/fortify-ps/FortifyBugTrackerUtility) for submitting vulnerability data to bug tracking and other external systems. It makes sense to move this functionality to FortifyVulnerabilityExporter (FVE) for various...
The following warning is shown when running `./gradlew distThirdParty --warning-mode=all`: ``` > Task :generateLicenseReport The runtime configuration has been deprecated for resolution. This will fail with an error in Gradle...
Current action framework is focused on retrieving, processing and outputting data. Ideally, we should also support pipeline-style actions, for example allowing an action to run the following steps: 1. Set...
With the current action framework, output data is collected in memory and then written at once to an output file or console using the `write` instruction. At the moment, the...
Current action framework requires an active product session when running an action. Especially if we ever want to implement pipeline-style actions, it would be good if we can automatically start...
If we ever want to implement pipeline-style actions, we'd need to allow actions to run the `scancentral package` command, and possibly any other commands. We could either: 1. Provide a...
Progress messages may be generated by both the actions framework and action implementations. As a consequence, any non-progress data (i.e. actual action output) to be written to stdout/stderr needs to...
With the current fcli output framework, we do a lot of dynamic interface-based lookups, i.e., `AbstractOutputCommand` checks whether the current command is an instance of `IBaseRequestSupplier` or `IJsonNodeSupplier`, from other...
(copied from other source) I understand that using `--copy-from` does not copy the auth entities/access permissions from the source. Instead I believe we're directed to use the `--add-users` command option....