dmd policy evaluate
dmd policy evaluate
Evaluate an Open Policy Agent policy
Usage
evaluate /path/to/policy.rego --db dmd.db
Synopsis
Indicate dependencies that would be flagged by a given Open Policy Agent Policy
As an alternative to writing custom Advisories https://dmd.tanna.dev/cookbooks/custom-advisories/, you can leverage the power of Open Policy Agent to create Policies https://dmd.tanna.dev/concepts/policy/. See https://dmd.tanna.dev/cookbooks/custom-advisories-opa/ for more information on how to write them.
NOTE that this only performs the evaluation, and does not write the state to the database. To do so, use dmd db generate policy-violations.
Options
| Flag (type) | Usage | Notes |
|---|---|---|
--db (string)
|
the path to the input/output database |
|
-h, --help
|
help for evaluate |
|
--limit (int)
|
How many violation(s) to output. Set to -1 to show all results. |
|
--no-progress
|
prevent displaying progress of long-running tasks |
|
Options inherited from parent commands
| Flag (type) | Usage | Notes |
|---|---|---|
--debug
|
whether to enable debug logging |
|
Related
dmd policy- Perform actions alongside user-defined Policies