django-DefectDojo icon indicating copy to clipboard operation
django-DefectDojo copied to clipboard
verified publisher icon DefectDojo

"Semgrep Cloud Platform" and support for webhook integration

Open tomaszn opened this issue 2 years ago • 1 comments

Scanner Name Semgrep, with their SaaS offering: https://semgrep.dev/docs/semgrep-cloud-platform/webhooks/

So another webhook configuration would be needed.

Sample File There are two JSON formats:

  • for scans (can be mapped to engagements)?
  • for findings

Up-to-date versions are available in under the link above.

tomaszn avatar Jun 09 '23 14:06 tomaszn

Hi @tomaszn, if you provide sample output, the semgrep parser can be extended. But there will most likely be no API importer implemented. https://defectdojo.github.io/django-DefectDojo/contributing/how-to-write-a-parser/#api-parsers

manuel-sommer avatar Jan 23 '24 11:01 manuel-sommer

I guess this can be closed as there was no update for over a month @mtesauro . If you still need help here, feel free to open a new issue with sample files.

manuel-sommer avatar Feb 26 '24 21:02 manuel-sommer