-
Notifications
You must be signed in to change notification settings - Fork 468
/
cve_bin_tool_config.toml
51 lines (36 loc) · 1.41 KB
/
cve_bin_tool_config.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
[input]
# Directory to scan
directory = "test/assets"
# To supplement triage data of previous scan or run standalone as csv2cve
# Currently we only support csv and json file.
input_file = "test/csv/triage.csv"
[checker]
# list of checkers you want to skip
skips = ["python", "bzip2"]
# list of checkers you want to run
runs = ["libcurl", "binutils"]
[output]
# specify output verbosity from ["debug", "info", "warning", "error", "critical"]
# verbosity will decreases as you go left to right (default: "info")
log_level = "debug"
# if true then we don't display any output and
# only exit-code with number of cves get returned
# overwrites setting specified in log_level
# Note: it's lowercase true or false
quiet = false
# specify one of an output format: ["csv", "json", "html", "console"] (default: "console")
format = "console"
# provide output filename (optional)
# if not specified we will generate one according to output format specified
output_file = ""
# specify minimum CVE severity level to report from ["low", "medium", "high", "critical"] (default: "low")
severity = "low"
# specify minimum CVSS score to report from integer range 0 to 10 (default: 0)
cvss = 0
[other]
# set true if you want to skip checking for newer version
disable_version_check = false
# update schedule for NVD database (default: daily)
update = "daily"
# set true if you want to autoextract archive files. (default: true)
extract = true