AnchoreCTL Policies Report
AnchoreCTLs JSON policies report format. Both legacy list-based format and new evaluation-based format are supported.
Usage
To generate a policy report that can be imported into DefectDojo:
# Evaluate policies and output to JSON format
anchorectl policy evaluate -o json > policy_report.jsonSample Scan Data
Sample AnchoreCTL Policies Report scans can be found here.
Default Deduplication Hashcode Fields
By default, DefectDojo identifies duplicate Findings using these hashcode fields:
- title
- severity
- component name
- file path