How-To-Guides overview/progress #49
Description
This issue is used as a an overview on the progress of the how-to-guides for the diataxis bracnch:
How-to-guides
- index.mdx # How-to overview
scanning #46
- scan-docker-images.mdx # Container scanning
- scan-source-code.mdx # SAST scanning
- scan-dependencies.mdx # SCA scanning
- upload-sbom.mdx # Upload existing SBOMs
- upload-vex.mdx # Upload VEX documents
- scheduled-scans.mdx # Automated scanning
vulnerability-management (in progress: lars)
- mark-as-false-positive.mdx # False positive handling
- accept-risk.mdx # Risk acceptance
- create-vuln-events.mdx # Event management
- track-fix-progress.mdx # Remediation tracking (dashboard)
- sync-external-data.mdx # External vuln sync
- customize-risk-scores.mdx # Risk scoring (CIA)
dependency-management
- view-dependency-tree.mdx # Dependency graph
- find-vulnerable-deps.mdx # Vulnerability search
- license-compliance.mdx # License management
- override-license-decisions.mdx # License overrides
- component-search.mdx # Find components
integrations (assigned: rafi)
- custom-webhooks/
- create-webhook.mdx
- webhook-events.mdx
- webhook-security.mdx
github
- setup-github-app.mdx # GitHub App installation
- auto-setup.mdx # Auto-setup feature
- webhooks.mdx # Webhook configuration
- permission-sync.mdx # RBAC sync
gitlab
- setup-gitlab-integration.mdx
- webhooks.mdx
- permission-sync.mdx
jira
- connect-jira.mdx
- issue-creation.mdx
- sync-status.md
security
dependency-proxy
- setup-npm-proxy.mdx # NPM proxy (EXISTING)
- setup-pypi-proxy.mdx # PyPI proxy (EXISTING)
- setup-go-proxy.mdx # Go proxy (EXISTING)
- malicious-package-blocking.mdx
- cache-management.mdx
supply-chain
- create-in-toto-links.mdx # In-toto links
- verify-supply-chain.mdx # Supply chain verification
- manage-attestations.mdx # Attestation management
- signing-artifacts.mdx # Artifact signing
access-control
- manage-users.mdx # User management
- setup-rbac.mdx # Role-based access
- organization-roles.mdx # Org-level permissions
- project-roles.mdx # Project-level permissions
- asset-roles.mdx # Asset-level permissions
- api-tokens.mdx # PAT management
compliance (in progress: lars)
- generate-csaf-reports.mdx # CSAF generation
- generate-vex-documents.mdx # VEX generation
- export-sbom.mdx # SBOM export
- compliance-dashboards.mdx # Compliance views
- audit-logs.mdx # Audit trail
- attestation-policies.mdx # Policy evaluation
api-usage (in-progress: sebastian) #48
- authenticate-with-api.mdx # API authentication
- upload-scan-results.mdx # API scanning
- query-vulnerabilities.mdx # API queries
- manage-assets-via-api.mdx # Asset management
- webhooks-api.mdx # Webhook management
administration #45
- manage-organizations.mdx # Org management
- manage-projects.mdx # Project management
- manage-assets.mdx # Asset management
- configure-database.mdx # Database setup
- backup-restore.mdx # Backup procedures
- monitoring-metrics.mdx # Prometheus metrics
- update-devguard.mdx # Upgrade guide