Languages and Lines of Code (Open Source)

DefectDojo can display a breakdown of programming languages and lines of code for a Product, populated by importing a report from the cloc (Count Lines of Code) tool via the API.

Generating the cloc Report

Run cloc against your codebase using the --json flag to produce a JSON file in the correct format:

cloc --json /path/to/your/project > cloc-report.json

Importing via the API

Upload the JSON report to DefectDojo via the API. When importing, all existing language data for the Product is replaced with the contents of the new file.

The import endpoint is documented in the DefectDojo API v2 docs.

Viewing Results

After import, the language breakdown is displayed on the left side of the Product details page, showing each language and its line count. Colors for each language are defined by entries in the Language_Type table, pre-populated with data from GitHub.

Updating Language Colors

GitHub periodically updates language colors as new languages emerge. To pull the latest color data, run the following management command:

./manage.py import_github_languages

This reads from ozh/github-colors and adds new languages or updates existing colors.

Scheduling Rules

Rate Limiting

Automation

DefectDojo Documentation

Languages and Lines of Code (Open Source)

Generating the cloc Report

Importing via the API

Viewing Results

Updating Language Colors

Languages and Lines of Code (Open Source)

Generating the cloc Report#

Importing via the API#

Viewing Results#

Updating Language Colors#

Generating the cloc Report

Importing via the API

Viewing Results

Updating Language Colors