diff --git a/pkg/usecase/comment_githug_pr_test.go b/pkg/usecase/comment_githug_pr_test.go
index 7d66479..2b8891e 100644
--- a/pkg/usecase/comment_githug_pr_test.go
+++ b/pkg/usecase/comment_githug_pr_test.go
@@ -30,6 +30,19 @@ func TestRenderScanReport(t *testing.T) {
{VulnerabilityID: "CVE-0000-0003", PkgName: "pkg4", Vulnerability: trivy.Vulnerability{Title: "Vuln title3", Severity: "CRITICAL"}},
},
},
+ {
+ Target: "target3",
+ Secrets: []trivy.SecretFinding{
+ {
+ RuleID: "slack-web-hook",
+ Category: "Slack",
+ Severity: "HIGH",
+ Title: "Slack Web Hook",
+ StartLine: 14,
+ EndLine: 15,
+ },
+ },
+ },
},
}
added := trivy.Results{
diff --git a/pkg/usecase/templates/comment_body.md b/pkg/usecase/templates/comment_body.md
index 8a88d69..23eeadb 100644
--- a/pkg/usecase/templates/comment_body.md
+++ b/pkg/usecase/templates/comment_body.md
@@ -57,11 +57,24 @@
{{ if ne .Metadata.TotalVulnCount 0 }}
## ⚠️ All detected vulnerabilities
{{ range .Report.Results }}
+
+{{ if gt (len .Vulnerabilities) 0 }}
{{ .Target }}: ({{ .Vulnerabilities | len }})
{{ range .Vulnerabilities }}- {{ .VulnerabilityID }}: ( `{{ .PkgName }}` ) {{ .Title }}
{{ end }}
+{{ end }}
+
+{{ if gt (len .Secrets) 0 }}
+
+{{ .Target }}: ({{ .Secrets | len }})
+
+{{ range .Secrets }}- `{{ .RuleID }}`: {{ .Title }} ({{ .StartLine }}L-{{ .EndLine }}L)
+{{ end }}
+
+{{ end }}
+
{{ end }}
{{ end }}