vuln thresholds dev

entrypoint.sh

@@ -40,6 +40,7 @@ dtg=$(date +"%Y-%m-%d_%H-%M-%S")
 job=$(echo $GITHUB_RUN_ID)
 out_file="$sbom_dir/sbom-$job-$dtg.json"
 
+echo "[+] invoking inspector-sbomgen to generate sbom for $artifact_type $artifact_path"
 $sbomgen $artifact_type $artifact_path_arg $artifact_path $prog -o $out_file
 
 # move the logs and give needed permissions for the uploader
@@ -49,13 +50,17 @@ chmod -R o+r logs
 chmod -R o+r $sbom_dir
 
 # scan SBOM with Inspector
-echo "scanning $out_file with Amazon Inspector"
 scan_dir=inspector-scan
 scan_file=$scan_dir/inspector-scan-$job-$dtg.json
 mkdir $scan_dir
 cp $out_file ./sbom_to_scan.json
+
+echo "[i] invoking aws cli to scan SBOM with Amazon Inspector"
 aws inspector-scan scan-sbom --sbom file://sbom_to_scan.json --output-format CYCLONE_DX_1_5 > $scan_file 2>&1
 chmod -R o+r $scan_dir
 
 # present findings
+echo "[i] presenting summarized findings"
 python3 /present_findings.py $scan_file $out_file $thresholds_enabled $critical_threshold $high_threshold $medium_threshold $low_threshold
+
+