Metadata-Version: 2.1
Name: arvos
Version: 3.0.10
Summary: Arvos Command Line Utility
Author: Ayoub ED-DAFALI
Author-email: ayoub.eddafali@elastisys.com
License: UNKNOWN
Platform: UNKNOWN
Requires-Dist: docker
Requires-Dist: mako
Requires-Dist: wget

Arvos Utility Tool
=====================

AI and Risk-based Vulnerability Management for Trustworthy Open Source Adoption

Requirements
--------------------------

1. Python >= 3.9 and pip installed
2. Docker installed
3. Debugfs mounted ( sudo mount -t debugfs debugfs /sys/kernel/debug )
4. Linux kernel headers ( If not installed already )
    - Ubuntu/Debian : apt-get install -y linux-headers-$(uname -r)
    - CentOs : yum install -y kernel-devel
    - Fedora : dnf install -y kernel-devel


How to install
------------------

::

    $ pip install arvos
    $ arvos --help

Usage
------

Demo usage : 

::

    $ arvos --demo

The following command will build an application image ( based on jdk 17 ) from the specified jar, run it, and run the tracer app for a period of 2 minutes.

::

    $ arvos scan --java 17 --jar target/application.jar --trace-period 2 --pom pom.xml

Or  ( This will generate a .pdf report of the found vunlerablities )

:: 

    $ arvos scan --java 18 --jar target/java-app-0.0.1-SNAPSHOT.jar --trace-period 2 --save-report

Output 
------
.. image:: output.png

.. image:: output_summary.png

Supported platforms
---------------------

Linux only.










