Skip to content

Commit e1a9d3b

Browse files
MarshalXMarshalX
committed
Merge branch 'main' into CM-48559-commit-range-scans-for-sast
# Conflicts: # README.md
2 parents 9b6229b + 8ac74b3 commit e1a9d3b

File tree

1 file changed

+20
-17
lines changed

1 file changed

+20
-17
lines changed

README.md

Lines changed: 20 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -50,7 +50,8 @@ This guide walks you through both installation and usage.
5050
6. [Ignoring via a config file](#ignoring-via-a-config-file)
5151
5. [Report command](#report-command)
5252
1. [Generating SBOM Report](#generating-sbom-report)
53-
6. [Syntax Help](#syntax-help)
53+
6. [Scan logs](#scan-logs)
54+
7. [Syntax Help](#syntax-help)
5455

5556
# Prerequisites
5657

@@ -303,18 +304,18 @@ The following are the options and commands available with the Cycode CLI applica
303304

304305
The Cycode CLI application offers several types of scans so that you can choose the option that best fits your case. The following are the current options and commands available:
305306

306-
| Option | Description |
307-
|------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
308-
| `-t, --scan-type [secret\|iac\|sca\|sast]` | Specify the scan you wish to execute (`secret`/`iac`/`sca`/`sast`), the default is `secret`. |
309-
| `--show-secret BOOLEAN` | Show secrets in plain text. See [Show/Hide Secrets](#showhide-secrets) section for more details. |
310-
| `--soft-fail BOOLEAN` | Run scan without failing, always return a non-error status code. See [Soft Fail](#soft-fail) section for more details. |
311-
| `--severity-threshold [INFO\|LOW\|MEDIUM\|HIGH\|CRITICAL]` | Show only violations at the specified level or higher. |
312-
| `--sca-scan` | Specify the SCA scan you wish to execute (`package-vulnerabilities`/`license-compliance`). The default is both. |
313-
| `--monitor` | When specified, the scan results will be recorded in the knowledge graph. Please note that when working in `monitor` mode, the knowledge graph will not be updated as a result of SCM events (Push, Repo creation). (Supported for SCA scan type only). |
314-
| `--cycode-report` | When specified, displays a link to the scan report in the Cycode platform in the console output. |
315-
| `--no-restore` | When specified, Cycode will not run restore command. Will scan direct dependencies ONLY! |
316-
| `--gradle-all-sub-projects` | When specified, Cycode will run gradle restore command for all sub projects. Should run from root project directory ONLY! |
317-
| `--help` | Show options for given command. |
307+
| Option | Description |
308+
|------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|
309+
| `-t, --scan-type [secret\|iac\|sca\|sast]` | Specify the scan you wish to execute (`secret`/`iac`/`sca`/`sast`), the default is `secret`. |
310+
| `--show-secret BOOLEAN` | Show secrets in plain text. See [Show/Hide Secrets](#showhide-secrets) section for more details. |
311+
| `--soft-fail BOOLEAN` | Run scan without failing, always return a non-error status code. See [Soft Fail](#soft-fail) section for more details. |
312+
| `--severity-threshold [INFO\|LOW\|MEDIUM\|HIGH\|CRITICAL]` | Show only violations at the specified level or higher. |
313+
| `--sca-scan` | Specify the SCA scan you wish to execute (`package-vulnerabilities`/`license-compliance`). The default is both. |
314+
| `--monitor` | When specified, the scan results will be recorded in Cycode. |
315+
| `--cycode-report` | When specified, displays a link to the scan report in the Cycode platform in the console output. |
316+
| `--no-restore` | When specified, Cycode will not run restore command. Will scan direct dependencies ONLY! |
317+
| `--gradle-all-sub-projects` | When specified, Cycode will run gradle restore command for all sub projects. Should run from root project directory ONLY! |
318+
| `--help` | Show options for given command. |
318319

319320
| Command | Description |
320321
|----------------------------------------|-----------------------------------------------------------------|
@@ -338,16 +339,14 @@ The following command will scan the repository for policy violations that have s
338339
> [!NOTE]
339340
> This option is only available to SCA scans.
340341

341-
To push scan results tied to the [SCA policies](https://docs.cycode.com/docs/sca-policies) found in an SCA type scan to Cycode's knowledge graph, add the argument `--monitor` to the scan command.
342+
To push scan results tied to the [SCA policies](https://docs.cycode.com/docs/sca-policies) found in an SCA type scan to Cycode, add the argument `--monitor` to the scan command.
342343

343344
Consider the following example. The following command will scan the repository for SCA policy violations and push them to Cycode:
344345

345346
`cycode scan -t sca --monitor repository ~/home/git/codebase`
346347

347-
When using this option, the scan results from this scan will appear in the knowledge graph, which can be found [here](https://app.cycode.com/query-builder).
348+
When using this option, the scan results will appear in Cycode.
348349

349-
> [!WARNING]
350-
> You must be an `owner` or an `admin` in Cycode to view the knowledge graph page.
351350

352351
#### Cycode Report Option
353352

@@ -871,6 +870,10 @@ To create an SBOM report for a path:\
871870
For example:\
872871
`cycode report sbom --format spdx-2.3 --include-vulnerabilities --include-dev-dependencies path /path/to/local/project`
873872
873+
# Scan Logs
874+
875+
All CLI scan are logged in Cycode. The logs can be found under Settings > CLI Logs.
876+
874877
# Syntax Help
875878
876879
You may add the `--help` argument to any command at any time to see a help message that will display available options and their syntax.

0 commit comments

Comments
 (0)