fcli-fod-issue-update(1)

Synopsis

fcli fod issue update [--auditor-status=<auditorStatus>] [--comment=<comment>] [--delim=<delimiter>] [--dev-status=<developerStatus>] --rel=id|app[:ms]:rel [--severity=<severity>] --user=<user> --vuln-ids=<vulnIds>[,<vulnIds>…] [--vuln-ids=<vulnIds>[,<vulnIds>…]]… [[-h] [--env-prefix=<prefix>] [--log-file=<logFile>] [--log-level=<logLevel>] [--log-mask=<level>] [--debug]] [[--fod-session=<sessionName>]] [[-o=<type+args>] [--style*=<style>,…]… ] [--to-file=<outputFile>_]]

Description

This command allows for updating the audit information for multiple vulnerabilities. Note: the "id" here refers to the "vulnId" field which is not displayed in the FoD UI but is retrieved using the fcli fod issue ls command.

Options

--auditor-status=<auditorStatus>

The Auditor Status to set for the vulnerabilities. Allowed values: PendingReview, RemediationRequired, RemediationDeferred, RiskMitigated, RiskAccepted, NotAnIssue.

--comment=<comment>

A comment to apply to all the vulnerabilities that are updated.

--delim=<delimiter>

Change the default delimiter character when using options that accept "application[:microservice]:release" as an argument or parameter.

--dev-status=<developerStatus>

The Developer Status to set for the vulnerabilities. Allowed values: Open, InRemediation, Remediated, WillNotFix, ThirdPartyComponent.

--rel, --release=id|app[:ms]:rel

Release id or <application>[:<microservice>]:<release> name.

--severity=<severity>

The Severity to set for the vulnerabilities. Allowed values: Low, Medium, High, Critical, Info, Best Practice.

--user=<user>

The username or user id of the user the update will be recorded as.

--vuln-ids=<vulnIds>[,<vulnIds>…]

Comma separate list of the vulnerability ids to be updated.

FoD session name options

--fod-session=<sessionName>

Name of the FoD session to use for executing this command. Default value: default.

Output options (also see documentation link below)

-o, --output=<type+args>

Select output type (csv, table, expr, json, xml, yaml) and optional type arguments.

--store=<var>[:<prop>]

Store JSON results in an fcli variable for later reference.

*--style*=<style>,…

Select output style: header, no-header, pretty, no-pretty, flat, no-flat, array, single, border, no-border, md-border.

--to-file=<outputFile>

Write output to the specified file.

Generic fcli options (also see documentation link below)

--debug

Enable collection of debug logs.

--env-prefix=<prefix>

Prefix for resolving default option values. Default value: FCLI_DEFAULT.

-h, --help

Use 'fcli [command] -h' to display help for fcli (sub-)commands.

--log-file=<logFile>

Write log output to file. Default: ./fcli.log if logging is enabled.

--log-level=<logLevel>

Set logging level: TRACE, DEBUG, INFO, WARN, ERROR, NONE.

--log-mask=<level>

Log mask level: high, medium, low, none. Default: medium. Masking is done on a best-effort basis; no guarantee that all sensitive data will be masked.

FCLI: The Universal Fortify CLI

fcli-fod-issue-update(1) Manual Page

Name

Synopsis

Description

Options

FoD session name options

Output options (also see documentation link below)

Generic fcli options (also see documentation link below)