Re: API Call for Vulnerability Report
If anyone is interested, here is the quick script I put together to get these details
total=0
critical=()
high=()
medium=()
high+=("High risk images\n")
critical+=("Critical risk images\n")
medium+=("Medium risk images\n")
none+=("Images with no risk\n")
unknown+=("UNKNOWN\n")
for x in $(curl -k -s -X GET "https://harbor.xyz.net/api/repositories/top?count=99999" -H "accept: application/json" -H "authorization: Basic <REPLACE>" | jq .[].name);
do
((total=$total+1))
echo "TOTAL::" $total
x=$(echo $x | cut -d '"' -f 2)
echo "IMAGE::" $x
result=$(curl -k -s -X GET "https://harbor.xyz.net/api/repositories/${x}/tags" -H "authorization: Basic <REPLACE>" -H "accept: application/json" | jq '.[] | .scan_overview[]? | .severity')
echo $result
if [[ $result == *"Critical"* ]]; then
critical+="$x\n"
elif [[ $result == *"High"* ]]; then
high+="$x\n"
elif [[ $result == *"Medium"* ]]; then
medium+="$x\n"
elif [[ $result == *"None"* ]]; then
none+="$x\n"
elif [[ $result == *"Unknown"* ]]; then
unknown+="$x\n"
fi
done
echo "TOTAL IMAGES::" $total
printf "$critical"
printf "$high"
printf "$medium"
printf "$none"
printf "$unknown"