feat(vul): show number of fixable vulnerabilities

This commit is addint a column to the vulnerabilities count where we
count the number of fixable vulnerabilities, example:
```
$ lacework vulnerability report sha256:1234e0a882a0f3faa26d8d5c42f9800b4797ef13d9418037b986a7a41c9df51d
                                  CONTAINER IMAGE DETAILS                                 |        VULNERABILITIES
------------------------------------------------------------------------------------------+---------------------------------
    ID          sha256:1234e0a882a0f3faa26d8d5c42f9800b4797ef13d9418037b986a7a41c9df51d   |   SEVERITY   COUNT   FIXABLE
    Digest      sha256:1234836d144092bc9cc2b6d6ce98d9ebf1d81342cd6e0141a860c6339266e27f   | -----------+-------+----------
    Registry    index.docker.io                                                           |   Critical      12        12
    Repository  example/repo                                                              |   High          21        15
    Size        104.3 MB                                                                  |   Medium        59        44
    Created At  2018-02-12T00:00:00+0000                                                  |   Low           61        28
    Tags        latest, v1.2.32                                                           |   Info          87        18
                                                                                          |
```

Signed-off-by: Salim Afiune Maya <[email protected]>

Author: afiune

api/vulnerabilities.go

@@ -164,16 +164,40 @@ type VulContainerReport struct {
 
 func (report *VulContainerReport) VulCountsTable() [][]string {
 	return [][]string{
-		[]string{"Critical", fmt.Sprint(report.CriticalVulnerabilities)},
-		[]string{"Fixable", fmt.Sprint(report.FixableVulnerabilities)},
-		[]string{"High", fmt.Sprint(report.HighVulnerabilities)},
-		[]string{"Medium", fmt.Sprint(report.MediumVulnerabilities)},
-		[]string{"Low", fmt.Sprint(report.LowVulnerabilities)},
-		[]string{"Info", fmt.Sprint(report.InfoVulnerabilities)},
-		[]string{"Total", fmt.Sprint(report.TotalVulnerabilities)},
+		[]string{"Critical", fmt.Sprint(report.CriticalVulnerabilities),
+			fmt.Sprint(report.VulFixableCount("critical"))},
+		[]string{"High", fmt.Sprint(report.HighVulnerabilities),
+			fmt.Sprint(report.VulFixableCount("high"))},
+		[]string{"Medium", fmt.Sprint(report.MediumVulnerabilities),
+			fmt.Sprint(report.VulFixableCount("medium"))},
+		[]string{"Low", fmt.Sprint(report.LowVulnerabilities),
+			fmt.Sprint(report.VulFixableCount("low"))},
+		[]string{"Info", fmt.Sprint(report.InfoVulnerabilities),
+			fmt.Sprint(report.VulFixableCount("info"))},
 	}
 }
 
+func (report *VulContainerReport) VulFixableCount(severity string) int32 {
+	// @afiune check valid severity
+	severity = strings.ToLower(severity)
+
+	if len(report.Image.ImageLayers) == 0 {
+		return 0
+	}
+
+	var fixable int32 = 0
+	for _, layer := range report.Image.ImageLayers {
+		for _, pkg := range layer.Packages {
+			for _, vul := range pkg.Vulnerabilities {
+				if vul.Severity == severity && vul.FixVersion != "" {
+					fixable++
+				}
+			}
+		}
+	}
+	return fixable
+}
+
 type vulContainerImage struct {
 	ImageInfo   vulContainerImageInfo    `json:"image_info"`
 	ImageLayers []vulContainerImageLayer `json:"image_layers"`

cli/cmd/vulnerability.go

@@ -317,7 +317,10 @@ func buildVulnerabilityReport(report *api.VulContainerReport) string {
 
 	t = tablewriter.NewWriter(vulCountsTable)
 	t.SetBorder(false)
-	t.SetColumnSeparator("")
+	t.SetColumnSeparator(" ")
+	t.SetHeader([]string{
+		"Severity", "Count", "Fixable",
+	})
 	t.AppendBulk(report.VulCountsTable())
 	t.Render()
 
@@ -326,7 +329,7 @@ func buildVulnerabilityReport(report *api.VulContainerReport) string {
 	t.SetAutoWrapText(false)
 	t.SetHeader([]string{
 		"Container Image Details",
-		"Vulnerabilities Counts",
+		"Vulnerabilities",
 	})
 	t.Append([]string{
 		imageDetailsTable.String(),