Black Duck API utilities

Various API scripts for Black Duck - for use alongside the hub_rest_api_python API wrapper package provided by Black Duck.

PREREQUISITES

Scripts have the following requirements:

1. Python 3 must be installed.

2. Install the following packages in the virtualenv:

   pip3 install blackduck
   

3. An API key for the Black Duck server must be configured within the .restconfig.json file in the script invocation folder - see the CONFIG FILE section below.

CONFIG FILE

Configure the Black Duck connection within the .restconfig.json file in the script invocation folder - example contents:

{
  "baseurl": "https://myhub.blackducksoftware.com",
  "api_token": "YWZkOTE5NGYtNzUxYS00NDFmLWJjNzItYmYwY2VlNDIxYzUwOmE4NjNlNmEzLWRlNTItNGFiMC04YTYwLWRBBWQ2MDFXXjA0Mg==",
  "insecure": true,
  "debug": false
}

SCRIPTS IN THIS REPO

ignore_snippets.py - Batch process unconfirmed snippets to ignore those below specified criteria (See the README)

ignore_cves_with_bdsa_mismatch.py - Batch process CVEs to ignore those within a project version with an associated BDSA but which disagrees on the affected component version (ignoring potentially false positive CVEs due to poor version association) - (See the README)