Elizabeth W
18 lines
932 B
Markdown
18 lines
932 B
Markdown
# Implementation Plan: DefectDojo Upload
|
|
|
|
## Objective
|
|
Implement a task that pushes all SARIF/JSON reports from the PVC to DefectDojo via its API.
|
|
|
|
## Requirements
|
|
- Define a task template named `upload-defectdojo`.
|
|
- Depend on the completion of all parallel scanner tasks (Phase 2).
|
|
- Mount the shared PVC at `/workspace`.
|
|
- Expect DefectDojo API keys and URL to be injected as environment variables via Infisical (with initContainer wait logic).
|
|
- Iterate over the `/workspace/reports/` directory.
|
|
- For each file, make an API request to DefectDojo to import the scan results (mapping the file type to the correct DefectDojo parser, e.g., SARIF -> Generic SARIF).
|
|
|
|
## Agent Instructions
|
|
1. Add the `upload-defectdojo` template to the `ClusterWorkflowTemplate`.
|
|
2. Write the API upload script (Python, curl, or a dedicated CLI) in the task template.
|
|
3. Configure the Infisical initContainer to wait for the DefectDojo credentials.
|