Skip to content

hail-is/security-tracker-app

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
.github/workflows
.github/workflows
 
 
cli
cli
 
 
devbin
devbin
 
 
tests
tests
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
CLAUDE.md
CLAUDE.md
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Security Findings Tracker

A CLI tool for tracking and managing POA&M (Plan of Action and Milestones) lifecycle for compliance purposes. Processes weekly security findings from Trivy, ZAP, and CIS scans and applies them to a POAM Excel file.

Requirements

  • Python 3.9 - 3.12
  • Virtual environment (recommended)

Features

  • Download and process Trivy, ZAP, and CIS findings
  • Diff findings against existing POAMs to identify new, closed, and reopened items
  • Automatic due date assignment based on severity
  • Apply diffs to update the POAM Excel file

Installation

  1. Ensure you have Python 3.9 or higher installed:
python --version  # Should show 3.9 or higher
  1. Clone the repository:
git clone <repository-url>
cd security-tracker-app
  1. Create a virtual environment and activate it:
python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate
  1. Install the required dependencies:
pip install -r requirements.txt

Command Line Tools

The application includes command line tools for automation and data management. These tools are available through the cli.py script in the cli directory.

Command Groups

The CLI is organized into the following command groups:

  1. poams - Commands for working with POAMs:

    # Interactive weekly update process
./cli/cli.py poams weekly-update

# Preview Trivy POAMs from an Excel file
./cli/cli.py poams preview-trivy <file_path> [--limit <n>]

# Apply diff changes to a POAM Excel file
./cli/cli.py poams apply-diff <poam_file> <diff_file>

  2. trivy - Commands for working with Trivy:

    # Download Trivy alerts from GitHub code scanning API
./cli/cli.py trivy download-alerts [--destination <file_path>]

# Convert GitHub Trivy alerts JSON to POAM CSV format
./cli/cli.py trivy convert-alerts <alerts_file> [--output <file_path>]

# Compare Trivy alerts against existing POAMs
./cli/cli.py trivy alerts-diff <poam_file> <alerts_csv>

To see all available commands and their options:

./cli/cli.py --help

For help on a specific command group:

./cli/cli.py poams --help
./cli/cli.py trivy --help

Authentication

The tools that interact with Google services use Application Default Credentials (ADC). To set up authentication:

  1. Using gcloud (recommended for development):
gcloud auth application-default login
  1. Or using a service account (recommended for production):
export GOOGLE_APPLICATION_CREDENTIALS="/path/to/service-account-key.json"

Available Commands

About

Helper app to track recurrence and resolution of security findings in a local filesystem database

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages