🪄 jq trick > group and count by severity 📊 #8

adriens · 2022-07-23T08:24:22Z

Provide the jq query that takes in input a grype -o json command and returns

"Negligible",0
"Low",4
"High",10

see Group vulnerabilities by severity

🐦 Tweet
:

The text was updated successfully, but these errors were encountered:

cf #8

adriens · 2022-07-27T04:32:33Z

@mbarre 😺
If you can submit the PR before September 🙏

mbarre · 2022-08-02T00:58:18Z

grype nginx:latest -o json --file grype.json 
cat grype.json | jq  '.matches[].vulnerability.severity' | sort | uniq -c
     7 "Critical"
     23 "High"
     10 "Low"
     22 "Medium"
     82 "Negligible"
      9 "Unknown"

c pas du json, mais ca permet de decouvrir uniq

adriens · 2022-08-02T10:20:56Z

💡 even shorter, and without temporary file :

grype nginx:latest -o json | \
    jq  '.matches[].vulnerability.severity' \
    | sort \
    | uniq -c

👇

❯ grype nginx:latest -o json | \
    jq  '.matches[].vulnerability.severity' \
    | sort \
    | uniq -c
 ✔ Vulnerability DB        [updated]
 ✔ Loaded image            
 ✔ Parsed image            
 ✔ Cataloged packages      [143 packages]
 ✔ Scanned image           [155 vulnerabilities]
      7 "Critical"
     23 "High"
     10 "Low"
     22 "Medium"
     82 "Negligible"
      9 "Unknown"

adriens · 2022-08-02T20:52:50Z

cf https://twitter.com/rastadidi/status/1554570454764883968

mbarre · 2022-08-15T21:52:16Z

 jq '[.matches[].vulnerability | {severity : .severity} ]| group_by(.severity)[] |.[0] + { count: length } '

{
  "severity": "Critical",
  "count": 8
}
{
  "severity": "High",
  "count": 26
}
{
  "severity": "Low",
  "count": 10
}
{
  "severity": "Medium",
  "count": 24
}
{
  "severity": "Negligible",
  "count": 82
}
{
  "severity": "Unknown",
  "count": 4
}

adriens · 2022-08-15T23:44:47Z

je teste ça !

adriens · 2022-08-15T23:49:20Z

grype -o json nginx:latest \
    | jq '[.matches[].vulnerability | {severity : .severity} ]| group_by(.severity)[] |.[0] + { count: length } '

👌

Can you also please provide (pure js) :

piping for a tabular output
piping for a csv input

adriens · 2022-08-15T23:50:44Z

I think the next step will be to make a PR to feed JQ_TRICKS.md 👏 🏅 @mbarre

mbarre · 2022-08-30T04:05:49Z

❯ cat grype.json | jq -r '[[.matches[].vulnerability | {severity : .severity}] | group_by(.severity)[] | .[0] + {count: length}] '

[
  {
    "severity": "Critical",
    "count": 8
  },
  {
    "severity": "High",
    "count": 26
  },
  {
    "severity": "Low",
    "count": 10
  },
  {
    "severity": "Medium",
    "count": 24
  },
  {
    "severity": "Negligible",
    "count": 82
  },
  {
    "severity": "Unknown",
    "count": 4
  }
]

adriens · 2022-08-30T22:19:53Z

🤑 you git it ! Just drop PRs on the tricks now 🚀 🙏

mbarre · 2022-09-13T01:37:18Z

cat grype.json | jq -r '[.matches[].vulnerability | {severity}] | group_by(.severity) | [.[] | {severity: .[0].severity, count: . | length}]| to_entries as $row |  ( ( map(keys_unsorted ) | add | unique ) as $cols | ( [$cols] | flatten) ,  ( $row | .[] as $onerow | $onerow |( [ ( $cols |   map ($onerow.value[.] as $v | $v )  ) ]| flatten ) ) ) | @csv '

"count","severity"
8,"Critical"
26,"High"
10,"Low"
24,"Medium"
82,"Negligible"
4,"Unknown"

cat grype.json | jq -r '[.matches[].vulnerability | {severity}] | group_by(.severity) | [.[] | {severity: .[0].severity, count: . | length}]| to_entries as $row |  ( ( map(keys_unsorted ) | add | unique ) as $cols | ( [$cols] | flatten) ,  ( $row | .[] as $onerow | $onerow |( [ ( $cols |   map ($onerow.value[.] as $v | $v )  ) ]| flatten ) ) ) | @tsv '

count	severity
8	Critical
26	High
10	Low
24	Medium
82	Negligible
4	Unknown

adriens · 2022-09-23T21:06:49Z

Afert some integration tests, it appears that it would be much more optimal to get the output like following :

"severity", "count"
"Critical",9
"High",29
"Low",10
"Medium",28
"Negligible",86
"Unknown",2

👉 Can you please put columns in the following order :

severity
count

mbarre · 2022-10-13T22:56:15Z

cat grype.json | jq -r '[.matches[].vulnerability | {severity}] | group_by(.severity) | [.[] | {severity: .[0].severity, count: . | length}]|(.[0] | keys_unsorted) as $keys | ([$keys] + map([.[ $keys[] ]])) [] | @csv'

"severity","count"
"Critical",8
"High",26
"Low",10
"Medium",24
"Negligible",82
"Unknown",4

ref: #8

adriens · 2022-10-14T21:46:22Z

adriens added the enhancement New feature or request label Jul 23, 2022

adriens changed the title ~~Implement jq trick to group and count by sevrity~~ 🪄 Implement jq trick to group and count by sevrity Jul 23, 2022

adriens pinned this issue Jul 23, 2022

adriens added a commit that referenced this issue Jul 23, 2022

Update JQ_TRICKS.md

a000a4f

cf #8

adriens added a commit that referenced this issue Jul 23, 2022

Update JQ_TRICKS.md

5f4fc18

cf #8

adriens added a commit that referenced this issue Jul 23, 2022

Update JQ_TRICKS.md

caedf70

cf #8

adriens changed the title ~~🪄 Implement jq trick to group and count by sevrity~~ 🪄 Implement jq trick to group and count by severity Jul 23, 2022

adriens added the help wanted Extra attention is needed label Jul 23, 2022

adriens assigned mbarre Jul 27, 2022

adriens added this to Candidates in Grype contribs via automation Jul 27, 2022

adriens added the BUILD Toute activité liée à la création de nouvelles fonctionnalités label Jul 27, 2022

adriens moved this from Candidates to To do in Grype contribs Jul 27, 2022

adriens added this to the Better templates milestone Jul 27, 2022

adriens mentioned this issue Jul 27, 2022

🧑‍🤝‍🧑 Team workshop 💡 #9

Closed

5 tasks

adriens changed the title ~~🪄 Implement jq trick to group and count by severity~~ 🪄 jq trick > to group and count by severity Jul 27, 2022

adriens changed the title ~~🪄 jq trick > to group and count by severity~~ 🪄 jq trick > to group and count by severity 📊 Aug 2, 2022

adriens changed the title ~~🪄 jq trick > to group and count by severity 📊~~ 🪄 jq trick > group and count by severity 📊 Aug 2, 2022

adriens mentioned this issue Aug 15, 2022

Add the total types of vulnerabilities in Grype output anchore/grype#877

Closed

mbarre closed this as completed Sep 13, 2022

Grype contribs automation moved this from To do to Done Sep 13, 2022

adriens reopened this Sep 23, 2022

Grype contribs automation moved this from Done to In progress Sep 23, 2022

mbarre closed this as completed Oct 13, 2022

Grype contribs automation moved this from In progress to Done Oct 13, 2022

mbarre added a commit that referenced this issue Oct 13, 2022

docs: reorder column

2b0186a

ref: #8

mbarre mentioned this issue Oct 13, 2022

docs: reorder column #13

Merged

adriens mentioned this issue Oct 14, 2022

📝 Write csv DEV.to post for csv output (jq tricks) #14

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

🪄 jq trick > group and count by severity 📊 #8

🪄 jq trick > group and count by severity 📊 #8

adriens commented Jul 23, 2022 •

edited

Loading

adriens commented Jul 27, 2022

mbarre commented Aug 2, 2022

adriens commented Aug 2, 2022 •

edited

Loading

adriens commented Aug 2, 2022

mbarre commented Aug 15, 2022

adriens commented Aug 15, 2022

adriens commented Aug 15, 2022

adriens commented Aug 15, 2022

mbarre commented Aug 30, 2022

adriens commented Aug 30, 2022

mbarre commented Sep 13, 2022

adriens commented Sep 23, 2022

mbarre commented Oct 13, 2022

adriens commented Oct 14, 2022

🪄 jq trick > group and count by severity 📊 #8

🪄 jq trick > group and count by severity 📊 #8

Comments

adriens commented Jul 23, 2022 • edited Loading

adriens commented Jul 27, 2022

mbarre commented Aug 2, 2022

adriens commented Aug 2, 2022 • edited Loading

adriens commented Aug 2, 2022

mbarre commented Aug 15, 2022

adriens commented Aug 15, 2022

adriens commented Aug 15, 2022

adriens commented Aug 15, 2022

mbarre commented Aug 30, 2022

adriens commented Aug 30, 2022

mbarre commented Sep 13, 2022

adriens commented Sep 23, 2022

mbarre commented Oct 13, 2022

adriens commented Oct 14, 2022

adriens commented Jul 23, 2022 •

edited

Loading

adriens commented Aug 2, 2022 •

edited

Loading