Problem or use case
agentsec findings stay in the developer terminal or CI pipeline. Enterprise SOC teams use Splunk, Sentinel, QRadar, and SOAR platforms. Without syslog or CEF output, findings never reach the security operations center.
Proposed solution
Add --output syslog and --output cef format options:
agentsec scan -o syslog | logger -t agentsec
agentsec scan -o cef -f findings.cef
CEF (Common Event Format) is understood by every major SIEM. Syslog is the universal transport.
Area
Reporting
Problem or use case
agentsec findings stay in the developer terminal or CI pipeline. Enterprise SOC teams use Splunk, Sentinel, QRadar, and SOAR platforms. Without syslog or CEF output, findings never reach the security operations center.
Proposed solution
Add
--output syslogand--output cefformat options:agentsec scan -o syslog | logger -t agentsec agentsec scan -o cef -f findings.cefCEF (Common Event Format) is understood by every major SIEM. Syslog is the universal transport.
Area
Reporting