Skip to content

Commit adade5a

Browse files
JamesLaverackJamesLaverack
authored
Documentation updates (#50)
2 parents d0c1e75 + c7b7a4a commit adade5a

File tree

1 file changed

+17
-11
lines changed

1 file changed

+17
-11
lines changed

README.md

Lines changed: 17 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ conflicts.
3535
`--permissive`: Enables permissive mode, allowing all certificates unless explicitly forbidden. When not
3636
enabled `validate` defaults to `strict` mode where all certificates are forbidden unless explicitly allowed.
3737
38-
`--warn`: Forces the process to end with exit code 0 regardless of whether conflicts are found. Output remains the same.
38+
`--quiet`: Forces the process to end with exit code 0 regardless of whether conflicts are found. Output remains the same.
3939
4040
`-c --config`: Takes a file path and allows the use of a specified config file rather than the default, `.paranoia.yaml`.
4141
@@ -68,26 +68,32 @@ exit status 1
6868
**Note:** Comments on allowed certificate fingerprints will never be displayed in the output as we don't report on
6969
allowances. However, they can be very helpful for anyone who needs to maintain the file.
7070

71-
7271
### Export
7372

7473
Outputs data on all found certificates, including the file location, owner, valid from and valid to dates and the SHA256
7574
fingerprint (useful for populating a config file for use with the `validate` command).
7675

7776
```shell
78-
$ paranoid export alpine:latest
79-
File Location Owner Not Before Not After SHA-256
80-
etc/ssl/certs/ca-certificates.crt ACCVRAIZ1 2011-05-05T09:37:37Z 2030-12-31T09:37:37Z 9a6ec012e1a7da9dbe34194d478ad7c0db1822fb071df12981496ed104384113
81-
etc/ssl/certs/ca-certificates.crt AC RAIZ FNMT-RCM SERVIDORES SEGUROS 2018-12-20T09:37:33Z 2043-12-20T09:37:33Z 554153b13d2cf9ddb753bfbe1a4e0ae08d0aa4187058fe60a2b862b2e4b87bcb
82-
...
83-
etc/ssl/certs/ca-certificates.crt vTrus ECC Root CA 2018-07-31T07:26:44Z 2043-07-31T07:26:44Z 30fbba2c32238e2a98547af97931e550428b9b3f1c8eeb6633dcfa86c5b27dd3
84-
etc/ssl/certs/ca-certificates.crt vTrus Root CA 2018-07-31T07:24:05Z 2043-07-31T07:24:05Z 8a71de6559336f426c26e53880d00d88a18da4c6a91f0dcb6194e206c5c96387
85-
Found 132 certificates
77+
$ paranoia export alpine:latest
78+
File Location Subject
79+
/etc/ssl/certs/ca-certificates.crt CN=ACCVRAIZ1,OU=PKIACCV,O=ACCV,C=ES
80+
/etc/ssl/certs/ca-certificates.crt OU=AC RAIZ FNMT-RCM,O=FNMT-RCM,C=ES
81+
/etc/ssl/certs/ca-certificates.crt CN=AC RAIZ FNMT-RCM SERVIDORES SEGUROS,OU=Ceres,O=FNMT-RCM,C=ES,2.5.4.97=#130f56415445532d51323832363030344a
82+
/etc/ssl/certs/ca-certificates.crt SERIALNUMBER=G63287510,CN=ANF Secure Server Root CA,OU=ANF CA Raiz,O=ANF Autoridad de Certificacion,C=ES
83+
/etc/ssl/certs/ca-certificates.crt CN=Actalis Authentication Root CA,O=Actalis S.p.A./03358520967,L=Milan,C=IT
84+
/etc/ssl/certs/ca-certificates.crt CN=AffirmTrust Commercial,O=AffirmTrust,C=US
85+
/etc/ssl/certs/ca-certificates.crt CN=AffirmTrust Networking,O=AffirmTrust,C=US
86+
/etc/ssl/certs/ca-certificates.crt CN=AffirmTrust Premium,O=AffirmTrust,C=US
87+
/etc/ssl/certs/ca-certificates.crt CN=AffirmTrust Premium ECC,O=AffirmTrust,C=US
88+
89+
/etc/ssl/certs/ca-certificates.crt CN=vTrus ECC Root CA,O=iTrusChina Co.\,Ltd.,C=CN
90+
/etc/ssl/certs/ca-certificates.crt CN=vTrus Root CA,O=iTrusChina Co.\,Ltd.,C=CN
91+
Found 140 certificates
8692
```
8793

8894
### Global flags
8995

90-
`-o --output`: Allows specification of the output mode. Supports `pretty` and `json`. Defaults to `pretty`.
96+
`-o --output`: Allows specification of the output mode. Supports `pretty`, `wide`, and `json`. Defaults to `pretty`.
9197

9298
`--platform`: Specifies the platform in the form `os/arch[/variant][:osversion]` (e.g. `linux/amd64`)
9399

0 commit comments

Comments
 (0)