-
Notifications
You must be signed in to change notification settings - Fork 475
/
Copy pathcve_bin_tool_config.yaml
42 lines (40 loc) · 1.41 KB
/
cve_bin_tool_config.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
input:
# Directory to scan
directory: test/assets
# To supplement triage data of previous scan or run standalone as csv2cve
# Currently we only support csv and json file.
input_file: test/csv/triage.csv
checker:
# list of checkers you want to skip
skips:
- python
- bzip2
# list of checkers you want to run
runs:
- libcurl
- binutils
output:
# specify output verbosity from [debug, info, warning, error, critical]
# verbosity will decreases as you go left to right (default: info)
log_level: debug
# if true then we don't display any output and
# only exit-code with number of cves get returned
# overwrites setting specified in log_level
# Note: it's lowercase true or false
quiet: false
# specify one of an output format: [csv, json, html, console] (default: console)
format: console
# provide output filename (optional)
# if not specified we will generate one according to output format specified
output_file: ''
# specify minimum CVE severity level to report from [low, medium, high, critical] (default: low)
severity: low
# specify minimum CVSS score to report from integer range 0 to 10 (default: 0)
cvss: 0
other:
# set true if you want to skip checking for newer version
disable_version_check: false
# update schedule for NVD database (default: daily)
update: daily
# set true if you want to autoextract archive files. (default: true)
extract: true