ada/agentguard-ci
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8c2c420bffcb34d9f08751db2b788798f879c797
agentguard-ci/docs/plans/phase3-step2-defectdojo.md
T
Elizabeth W 963e020efa plan files
2026-04-19 22:12:00 -06:00

932 B
Raw Blame History

Implementation Plan: DefectDojo Upload

Objective

Implement a task that pushes all SARIF/JSON reports from the PVC to DefectDojo via its API.

Requirements

  • Define a task template named upload-defectdojo.
  • Depend on the completion of all parallel scanner tasks (Phase 2).
  • Mount the shared PVC at /workspace.
  • Expect DefectDojo API keys and URL to be injected as environment variables via Infisical (with initContainer wait logic).
  • Iterate over the /workspace/reports/ directory.
  • For each file, make an API request to DefectDojo to import the scan results (mapping the file type to the correct DefectDojo parser, e.g., SARIF -> Generic SARIF).

Agent Instructions

  1. Add the upload-defectdojo template to the ClusterWorkflowTemplate.
  2. Write the API upload script (Python, curl, or a dedicated CLI) in the task template.
  3. Configure the Infisical initContainer to wait for the DefectDojo credentials.
Reference in New Issue View Git Blame Copy Permalink