feat: add OutputConfig data model with from_args() method

- Add OutputConfig class with all 15 CLI output fields and defaults
- Implement explicit string-to-boolean conversion for display_vulnerability_findings
- Add from_args() class method for converting legacy args to structured config
- Add comprehensive test coverage (21 OutputConfig tests)
- Use CLI defaults for output paths and threshold values

Author: bluesentinelsec

entrypoint/entrypoint/data_model.py

@@ -43,3 +43,62 @@ def from_args(ScanConfig, args):
             skip_scanners=parse_comma_list(args.skip_scanners),
             skip_files=parse_comma_list(args.skip_files)
         )
+
+
+class OutputConfig:
+    def __init__(self, 
+                 display_vulnerability_findings="disabled", 
+                 show_only_fixable_vulns=False, 
+                 output_sbom_path="sbom.json", 
+                 output_inspector_scan_path="inspector-scan.json",
+                 output_inspector_scan_path_csv="inspector-scan.csv",
+                 output_inspector_scan_path_markdown="inspector-scan.md",
+                 output_dockerfile_scan_csv="inspector-dockerfile-scan.csv",
+                 output_dockerfile_scan_markdown="inspector-dockerfile-scan.md",
+                 thresholds=False,
+                 critical_threshold=0,
+                 high_threshold=0,
+                 medium_threshold=0,
+                 low_threshold=0,
+                 other_threshold=0,
+                 threshold_fixable_only=False):
+        # Convert string to boolean for type safety
+        if display_vulnerability_findings == "enabled":
+            self.display_vulnerability_findings = True
+        else:
+            self.display_vulnerability_findings = False
+            
+        self.show_only_fixable_vulns = show_only_fixable_vulns
+        self.output_sbom_path = output_sbom_path
+        self.output_inspector_scan_path = output_inspector_scan_path
+        self.output_inspector_scan_path_csv = output_inspector_scan_path_csv
+        self.output_inspector_scan_path_markdown = output_inspector_scan_path_markdown
+        self.output_dockerfile_scan_csv = output_dockerfile_scan_csv
+        self.output_dockerfile_scan_markdown = output_dockerfile_scan_markdown
+        self.thresholds = thresholds
+        self.critical_threshold = critical_threshold
+        self.high_threshold = high_threshold
+        self.medium_threshold = medium_threshold
+        self.low_threshold = low_threshold
+        self.other_threshold = other_threshold
+        self.threshold_fixable_only = threshold_fixable_only
+
+    @classmethod
+    def from_args(OutputConfig, args):
+        return OutputConfig(
+            display_vulnerability_findings=args.display_vuln_findings,
+            show_only_fixable_vulns=args.show_only_fixable_vulns,
+            output_sbom_path=args.out_sbom,
+            output_inspector_scan_path=args.out_scan,
+            output_inspector_scan_path_csv=args.out_scan_csv,
+            output_inspector_scan_path_markdown=args.out_scan_markdown,
+            output_dockerfile_scan_csv=args.out_dockerfile_scan_csv,
+            output_dockerfile_scan_markdown=args.out_dockerfile_scan_md,
+            thresholds=args.thresholds,
+            critical_threshold=args.critical,
+            high_threshold=args.high,
+            medium_threshold=args.medium,
+            low_threshold=args.low,
+            other_threshold=args.other,
+            threshold_fixable_only=args.threshold_fixable_only
+        )

entrypoint/tests/test_data_model.py

@@ -1,5 +1,5 @@
 import unittest
-from entrypoint.data_model import ArtifactType, ScanConfig, parse_comma_list
+from entrypoint.data_model import ArtifactType, ScanConfig, OutputConfig, parse_comma_list
 
 
 class MockArgs:
@@ -13,6 +13,24 @@ class MockArgs:
     skip_files = './media,/tmp/foo'
 
 
+class MockOutputArgs:
+    display_vuln_findings = 'enabled'
+    show_only_fixable_vulns = True
+    out_sbom = 'test_sbom.json'
+    out_scan = 'test_scan.json'
+    out_scan_csv = 'test_scan.csv'
+    out_scan_markdown = 'test_scan.md'
+    out_dockerfile_scan_csv = 'test_dockerfile.csv'
+    out_dockerfile_scan_md = 'test_dockerfile.md'
+    thresholds = True
+    critical = 5
+    high = 10
+    medium = 15
+    low = 20
+    other = 25
+    threshold_fixable_only = True
+
+
 class TestDataModel(unittest.TestCase):
 
     def test_artifact_type_repository_exists(self):
@@ -196,3 +214,112 @@ def test_scan_config_comprehensive_access(self):
         self.assertEqual(config.sbomgen_version, "1.8.0")
         self.assertEqual(config.timeout, 300)
         self.assertEqual(config.platform, "linux/amd64")
+
+    def test_output_config_can_be_created(self):
+        config = OutputConfig()
+        self.assertIsNotNone(config)
+
+    def test_output_config_has_display_vulnerability_findings(self):
+        config = OutputConfig(display_vulnerability_findings="enabled")
+        self.assertEqual(config.display_vulnerability_findings, True)
+
+    def test_output_config_has_show_only_fixable_vulns(self):
+        config = OutputConfig(show_only_fixable_vulns=True)
+        self.assertEqual(config.show_only_fixable_vulns, True)
+
+    def test_output_config_has_output_sbom_path(self):
+        config = OutputConfig(output_sbom_path="./sbom_123.json")
+        self.assertEqual(config.output_sbom_path, "./sbom_123.json")
+
+    def test_output_config_has_output_inspector_scan_path(self):
+        config = OutputConfig(output_inspector_scan_path="inspector_scan_123.json")
+        self.assertEqual(config.output_inspector_scan_path, "inspector_scan_123.json")
+
+    def test_output_config_uses_action_yml_defaults(self):
+        config = OutputConfig()
+        self.assertEqual(config.display_vulnerability_findings, False)
+        self.assertEqual(config.show_only_fixable_vulns, False)
+        self.assertEqual(config.output_sbom_path, "sbom.json")
+        self.assertEqual(config.output_inspector_scan_path, "inspector-scan.json")
+        self.assertEqual(config.output_inspector_scan_path_csv, "inspector-scan.csv")
+        self.assertEqual(config.output_inspector_scan_path_markdown, "inspector-scan.md")
+        self.assertEqual(config.output_dockerfile_scan_csv, "inspector-dockerfile-scan.csv")
+        self.assertEqual(config.output_dockerfile_scan_markdown, "inspector-dockerfile-scan.md")
+        self.assertEqual(config.thresholds, False)
+        self.assertEqual(config.critical_threshold, 0)
+        self.assertEqual(config.high_threshold, 0)
+        self.assertEqual(config.medium_threshold, 0)
+        self.assertEqual(config.low_threshold, 0)
+        self.assertEqual(config.other_threshold, 0)
+        self.assertEqual(config.threshold_fixable_only, False)
+
+    def test_output_config_converts_enabled_to_true(self):
+        config = OutputConfig(display_vulnerability_findings="enabled")
+        self.assertEqual(config.display_vulnerability_findings, True)
+
+    def test_output_config_converts_disabled_to_false(self):
+        config = OutputConfig(display_vulnerability_findings="disabled")
+        self.assertEqual(config.display_vulnerability_findings, False)
+
+    def test_output_config_converts_invalid_string_to_false(self):
+        config = OutputConfig(display_vulnerability_findings="invalid")
+        self.assertEqual(config.display_vulnerability_findings, False)
+
+    def test_output_config_has_output_inspector_scan_path_csv(self):
+        config = OutputConfig(output_inspector_scan_path_csv="inspector_scan_123.csv")
+        self.assertEqual(config.output_inspector_scan_path_csv, "inspector_scan_123.csv")
+
+    def test_output_config_has_output_inspector_scan_path_markdown(self):
+        config = OutputConfig(output_inspector_scan_path_markdown="inspector_scan_123.md")
+        self.assertEqual(config.output_inspector_scan_path_markdown, "inspector_scan_123.md")
+
+    def test_output_config_has_output_dockerfile_scan_csv(self):
+        config = OutputConfig(output_dockerfile_scan_csv="dockerfile_scan_123.csv")
+        self.assertEqual(config.output_dockerfile_scan_csv, "dockerfile_scan_123.csv")
+
+    def test_output_config_has_output_dockerfile_scan_markdown(self):
+        config = OutputConfig(output_dockerfile_scan_markdown="dockerfile_scan_123.md")
+        self.assertEqual(config.output_dockerfile_scan_markdown, "dockerfile_scan_123.md")
+
+    def test_output_config_has_thresholds(self):
+        config = OutputConfig(thresholds=True)
+        self.assertEqual(config.thresholds, True)
+
+    def test_output_config_has_critical_threshold(self):
+        config = OutputConfig(critical_threshold=5)
+        self.assertEqual(config.critical_threshold, 5)
+
+    def test_output_config_has_threshold_fixable_only(self):
+        config = OutputConfig(threshold_fixable_only=True)
+        self.assertEqual(config.threshold_fixable_only, True)
+
+    def test_output_config_from_args_exists(self):
+        mock_args = MockOutputArgs()
+        config = OutputConfig.from_args(mock_args)
+        self.assertIsNotNone(config)
+
+    def test_output_config_from_args_converts_display_vuln_findings(self):
+        mock_args = MockOutputArgs()
+        config = OutputConfig.from_args(mock_args)
+        self.assertEqual(config.display_vulnerability_findings, True)
+
+    def test_output_config_from_args_converts_output_paths(self):
+        mock_args = MockOutputArgs()
+        config = OutputConfig.from_args(mock_args)
+        self.assertEqual(config.output_sbom_path, 'test_sbom.json')
+        self.assertEqual(config.output_inspector_scan_path, 'test_scan.json')
+        self.assertEqual(config.output_inspector_scan_path_csv, 'test_scan.csv')
+
+    def test_output_config_from_args_converts_thresholds(self):
+        mock_args = MockOutputArgs()
+        config = OutputConfig.from_args(mock_args)
+        self.assertEqual(config.thresholds, True)
+        self.assertEqual(config.critical_threshold, 5)
+        self.assertEqual(config.high_threshold, 10)
+        self.assertEqual(config.threshold_fixable_only, True)
+
+    def test_output_config_from_args_converts_boolean_fields(self):
+        mock_args = MockOutputArgs()
+        config = OutputConfig.from_args(mock_args)
+        self.assertEqual(config.show_only_fixable_vulns, True)
+        self.assertEqual(config.threshold_fixable_only, True)