Skip to content

Commit

Permalink
Add vexllm plugin (silence negligible CVE using LLM) (#14)
Browse files Browse the repository at this point in the history 
https://github.com/AkihiroSuda/vexllm

VexLLM silences negligible CVE alerts using LLM.

Usage:

  # Set OpenAI API key
  export OPENAI_API_KEY=...

  # Specify OpenAI model
  export OPENAI_MODEL=gpt-4o-mini

  # Generate a report using Trivy
  trivy image python:3.12.4 --format=json --severity HIGH,CRITICAL >python.json

  # Generate .trivyignore using VexLLM
  trivy vexllm generate python.json .trivyignore \
    --hint-not-server \
    --hint-compromise-on-availability \
    --hint-used-commands=python3 \
    --hint-unused-commands=git,wget,curl,apt,apt-get

  # Print the report, using the generated .trivyignore
  trivy convert --format=table python.json

Signed-off-by: Akihiro Suda <[email protected]>
  • Loading branch information
@AkihiroSuda
AkihiroSuda authored Oct 23, 2024
1 parent 46d4b07 commit 047158f
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions plugins/vexllm.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
name: vexllm
repository: github.com/AkihiroSuda/vexllm

0 comments on commit 047158f

Please sign in to comment.