dmd db generate policy-violations
dmd db generate policy-violations
Persist all Open Policy Agent policy violations
Usage
policy-violations
Synopsis
Persist to the database all Open Policy Agent policy violations
As an alternative to writing custom Advisories (https://dmd.tanna.dev/cookbooks/custom-advisories/), you can leverage the power of Open Policy Agent to create Policies (https://dmd.tanna.dev/concepts/policy/). See https://dmd.tanna.dev/cookbooks/custom-advisories-opa/ for more information on how to write them.
This takes all policies from --policies-directory and evaluates them as defined in https://dmd.tanna.dev/cookbooks/custom-advisories-opa/ and then writes them to advisories table.
Options
| Flag (type) | Usage | Notes |
|---|---|---|
-h, --help
|
help for policy-violations |
|
--policies-directory (string)
|
The directory to source policies from |
|
Options inherited from parent commands
| Flag (type) | Usage | Notes |
|---|---|---|
--db (string)
|
the path to the input/output database |
|
--debug
|
whether to enable debug logging |
|
Related
dmd db generate- Generate new data into the database