ws-bulk-report-generator 0.2a1

WS Bulk Report Generator

WhiteSource Bulk Report Generator

Tool to execute a report on multiple projects.

• The tool allows including and excluding scopes by stating names and tokens.
• Report scope determines whether reports will be run on projects or products.
• If Included scopes is not stated, the tool will run reports on all of scopes.
• Report data is exported by default in binary (i.e. Excel or PDF) format or JSON.

Supported Operating Systems

• Linux (Bash): CentOS, Debian, Ubuntu, RedHat
• Windows (PowerShell): 10, 2012, 2016

Prerequisites

• Python 3.6+

Installation and Execution by pulling package from PyPi:

1. Execute pip install ws-bulk-report-generator
2. Run report: ws_bulk_report_generator -u <USER_KEY> -k <ORG_TOKEN> -r <REPORT_NAME> -s <REPORT_SCOPE>

Examples:

# Generate Inventory Reports (file per project) on all project within organization in JSON format (reports will be saved in the working dir):
ws_bulk_report_generator -u <USER_KEY> -k <ORG_TOKEN> -s project -r inventory -t json 

# Generate Risk Reports (PDF format) on all products (file per product) within organization:
ws_bulk_report_generator -u <USER_KEY> -k <ORG_TOKEN> -o /tmp/reports/ -s product -r risk  

# Search for 3 log4j recent vulnerabilities in all the organization and get output in a single JSON:
ws_bulk_report_generator -u <USER_KEY> -k <ORG_TOKEN> -o /tmp/reports/ -r vulnerability -t unified_json -x vulnerability_names="CVE-2021-45046,CVE-2021-44228,CVE-2021-4104"

Full Usage:

bulk_report_generator.py [-h] -u WS_USER_KEY -k WS_TOKEN -r
                                {alerts,ignored_alerts,resolved_alerts,inventory,lib_dependencies,vulnerability,container_vulnerability,source_files,source_file_inventory,in_house_libraries,in_house,risk,library_location,license_com
patibility,due_diligence,attributes,attribution,effective_licenses,bugs,request_history}
                                [-t {unified_json,unified_xlsx,binary,json}] [-s {project,product}] [-a WS_URL] [-o DIR] [-c CONFIG] [-x EXTRA_REPORT_ARGS] [-i INC_TOKENS] [-e EXC_TOKENS] [-in INC_NAMES] [-en EXC_NAMES]

WhiteSource Bulk Reports Generator

optional arguments:
  -h, --help            show this help message and exit
  -u WS_USER_KEY, --userKey WS_USER_KEY
                        WS User Key
  -k WS_TOKEN, --token WS_TOKEN
                        WS Token
  -r {alerts,ignored_alerts,resolved_alerts,inventory,lib_dependencies,vulnerability,container_vulnerability,source_files,source_file_inventory,in_house_libraries,in_house,risk,library_location,license_compatibility,due_diligence,at
tributes,attribution,effective_licenses,bugs,request_history}, --report {alerts,ignored_alerts,resolved_alerts,inventory,lib_dependencies,vulnerability,container_vulnerability,source_files,source_file_inventory,in_house_libraries,in
_house,risk,library_location,license_compatibility,due_diligence,attributes,attribution,effective_licenses,bugs,request_history}
                        Report Type to produce
  -t {unified_json,unified_xlsx,binary,json}, --outputType {unified_json,unified_xlsx,binary,json}
                        Type of output
  -s {project,product}, --ReportScope {project,product}
                        Scope of report
  -a WS_URL, --wsUrl WS_URL
                        WS URL
  -o DIR, --reportDir DIR
                        Report Dir
  -c CONFIG, --config CONFIG
                        Location of configuration file
  -x EXTRA_REPORT_ARGS, --extraReportArguments EXTRA_REPORT_ARGS
                        Extra arguments (key=value) to pass the report
  -i INC_TOKENS, --includedTokens INC_TOKENS
                        Included token (Default: All)
  -e EXC_TOKENS, --excludedTokens EXC_TOKENS
                        Excluded token (Default: None)
  -in INC_NAMES, --includedNames INC_NAMES
                        Included Scope Names (Default: All)
  -en EXC_NAMES, --excludedNames EXC_NAMES
                        Included Scope Names (Default: None)