Lab10 submission: Basanov Maxim

[scruffyscarf]

Goal

Stand up DefectDojo locally, import prior lab findings (ZAP, Semgrep, Trivy/Grype, Nuclei), and produce a stakeholder-ready reporting & metrics package.

Changes

Added labs/lab10/imports/import-grype-vuln-results.json
Added labs/lab10/imports/import-nuclei-results.json
Added labs/lab10/imports/import-semgrep-results.json
Added labs/lab10/imports/import-trivy-vuln-detailed.json
Added labs/lab10/imports/import-zap-report-noauth.json
Added labs/lab10/imports/run-imports.sh
Added labs/lab10/report/dojo-report.html
Added labs/lab10/report/findings.csv
Added labs/lab10/report/metrics-snapshot.md
Added labs/lab10/setup/django-DefectDojo
Added labs/lab4/syft/grype-vuln-results.json
Added labs/lab4/trivy/trivy-vuln-detailed.json
Added labs/lab5/nuclei/nuclei-results.json
Added labs/lab5/semgrep/semgrep-results.json
Added labs/lab5/zap/zap-report-noauth.json
Added labs/lab5/zap/zap-report-noauth.xml
Added labs/submission10.md

Testing

No testing.

Artifacts & Screenshots

labs/lab4
├── syft
│   └── grype-vuln-results.json
└── trivy
    └── trivy-vuln-detailed.json

labs/lab5
├── nuclei
│   └── nuclei-results.json
├── semgrep
│   └── semgrep-results.json
└── zap
    ├── zap-report-noauth.json
    └── zap-report-noauth.xml

labs/lab10
├── imports
│   ├── import-grype-vuln-results.json
│   ├── import-nuclei-results.json
│   ├── import-semgrep-results.json
│   ├── import-trivy-vuln-detailed.json
│   ├── import-zap-report-noauth.json
│   └── run-imports.sh
├── report
│   ├── dojo-report.html
│   ├── findings.csv
│   └── metrics-snapshot.md
└── setup
    └── django-DefectDojo

Checklist

• Task 1 — Dojo setup and structure
• Task 2 — Imports completed (multi-tool)
• Task 3 — Report + metrics package
• PR has a clear and descriptive title
• Documentation has been updated if necessary
• No sensitive data or large temporary files have been committed