neatshell · November 13, 2024 14:34
diff --git a/yarn-audit-csv.sh b/yarn-audit-csv.sh
 level=${1-critical}
 # Generate an audit report of Level or Critical advisories
 yarn audit --json --level "${level}" > audit.lines

 # Transform from JSON-lines to JSON format
 jq -s '.' audit.lines > audit.json

 # Extract advisories
 jq -r '.[] | 
  select(.type == "auditAdvisory") | 
  { severity: .data.advisory.severity, path: .data.resolution.path, cves: (.data.advisory.cves | @csv), module_name: .data.advisory.module_name } | 
  select(.severity == "critical" or .severity == "high") | 
  [.severity, .module_name, .path, .cves] | 
  @csv' \
  audit.json
	level=${1-critical}
	# Generate an audit report of Level or Critical advisories
	yarn audit --json --level "${level}" > audit.lines

	# Transform from JSON-lines to JSON format
	jq -s '.' audit.lines > audit.json

	# Extract advisories
	jq -r '.[] \|
	select(.type == "auditAdvisory") \|
	{ severity: .data.advisory.severity, path: .data.resolution.path, cves: (.data.advisory.cves \| @csv), module_name: .data.advisory.module_name } \|
	select(.severity == "critical" or .severity == "high") \|
	[.severity, .module_name, .path, .cves] \|
	@csv' \
	audit.json