report-generation-service
Project description
Pheme - Greenbone Static Report Generator
pheme is a service to create scan reports. It is maintained by Greenbone AG.
Pheme is the personification of fame and renown.
Or in this case personification of a service to generate reports.
Table of Contents
Installation
Requirements
Python 3.8 and later is supported.
Besides python pheme also needs to have
- libcairo2-dev
- pango1.0
installed.
Development
pheme uses poetry for its own dependency management and build process.
First install poetry via pip
python3 -m pip install --user poetry
Afterwards run
poetry install
in the checkout directory of pheme (the directory containing the
pyproject.toml file) to install all dependencies including the packages only
required for development.
Afterwards activate the git hooks for auto-formatting and linting via autohooks.
poetry run autohooks activate
Validate the activated git hooks by running
poetry run autohooks check
Usage
In order to prepare the data structure the XML report data needs to be posted to pheme with a grouping indicator (either by host or nvt).
E.g.:
> curl -X POST 'http://localhost:8000/transform?grouping=nvt'\
-H 'Content-Type: application/xml'\
-H 'Accept: application/json'\
-d @test_data/longer_report.xml
"scanreport-nvt-9a233b0d-713c-4f22-9e15-f6e5090873e3"⏎
The returned identifier can be used to generate the actual report.
So far a report can be either in:
- application/json
- application/xml
- text/csv E.g.
> curl -v 'http://localhost:8000/report/scanreport-nvt-9a233b0d-713c-4f22-9e15-f6e5090873e3' -H 'Accept: application/csv'
For visual report like
- application/pdf
- text/html
the corresponding css and html template needs to be put into pheme first:
> curl -X PUT localhost:8000/parameter\
-H 'x-api-key: SECRET_KEY_missing_using_default_not_suitable_in_production'\
--form vulnerability_report_html_css=@path_to_css_template\
--form vulnerability_report_pdf_css=@path_to_css_template\
--form vulnerability_report=@path_to_html_template
afterwards it can be get as usual:
> curl -v 'http://localhost:8000/report/scanreport-nvt-9a233b0d-713c-4f22-9e15-f6e5090873e3' -H 'Accept: application/pdf'
Maintainer
This project is maintained by Greenbone AG
Contributing
Your contributions are highly appreciated. Please create a pull request on GitHub. Bigger changes need to be discussed with the development team via the issues section at GitHub first.
License
Copyright (C) 2020-2023 Greenbone AG
Licensed under the GNU Affero General Public License v3.0 or later.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file pheme-21.10.4.tar.gz.
File metadata
- Download URL: pheme-21.10.4.tar.gz
- Upload date:
- Size: 36.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/5.1.1 CPython/3.12.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | ce449024a87e788de23a67ca661e1ae0b0843e9d85ea2d9103d939c15df5c724 |
|
| MD5 | 2edce0f9ef3e7d545e479b5aa55c082d |
|
| BLAKE2b-256 | e2fadbd334129797a02cc94640116f405e2c6164282c489a90197ba7f30419d0 |
Provenance
The following attestation bundles were made for pheme-21.10.4.tar.gz:
Publisher:
deploy-pypi.yml on greenbone/pheme
-
Statement:
- Statement type:
https://in-toto.io/Statement/v1 - Predicate type:
https://docs.pypi.org/attestations/publish/v1 - Subject name:
pheme-21.10.4.tar.gz - Subject digest:
ce449024a87e788de23a67ca661e1ae0b0843e9d85ea2d9103d939c15df5c724 - Sigstore transparency entry: 171328751
- Sigstore integration time:
- Permalink:
greenbone/pheme@6e1245470d2f2181c7bc63e07539e2d25066fa01 - Branch / Tag:
refs/tags/v21.10.4 - Owner: https://github.com/greenbone
- Access:
public
- Token Issuer:
https://token.actions.githubusercontent.com - Runner Environment:
github-hosted - Publication workflow:
deploy-pypi.yml@6e1245470d2f2181c7bc63e07539e2d25066fa01 - Trigger Event:
release
- Statement type:
File details
Details for the file pheme-21.10.4-py3-none-any.whl.
File metadata
- Download URL: pheme-21.10.4-py3-none-any.whl
- Upload date:
- Size: 54.6 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/5.1.1 CPython/3.12.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 74a9288dc3ca02d8b789a258a7237ea8c2ace86db1fd106ae1aafe6ff7942f71 |
|
| MD5 | 0116583b6981c3f0ffcbbdfc7f8a30d3 |
|
| BLAKE2b-256 | a9514ad6e7ed66fabcdc52ebeca5a8f7baed2528468b6c9eb84a8b0e8c6e50a9 |
Provenance
The following attestation bundles were made for pheme-21.10.4-py3-none-any.whl:
Publisher:
deploy-pypi.yml on greenbone/pheme
-
Statement:
- Statement type:
https://in-toto.io/Statement/v1 - Predicate type:
https://docs.pypi.org/attestations/publish/v1 - Subject name:
pheme-21.10.4-py3-none-any.whl - Subject digest:
74a9288dc3ca02d8b789a258a7237ea8c2ace86db1fd106ae1aafe6ff7942f71 - Sigstore transparency entry: 171328756
- Sigstore integration time:
- Permalink:
greenbone/pheme@6e1245470d2f2181c7bc63e07539e2d25066fa01 - Branch / Tag:
refs/tags/v21.10.4 - Owner: https://github.com/greenbone
- Access:
public
- Token Issuer:
https://token.actions.githubusercontent.com - Runner Environment:
github-hosted - Publication workflow:
deploy-pypi.yml@6e1245470d2f2181c7bc63e07539e2d25066fa01 - Trigger Event:
release
- Statement type:
