Is there an existing issue for this?
Current Behavior
I originally encountered this with v3.7.0 on windows but have reproduced with v3.7.1 on linux using the latest templates. Simply run nuclei with the -j flag and pass through something like jq or redirect the stderr to see the issue. Example output included in reproduction steps. The json output is corrupted by the warning message.
./nuclei --version [INF] Nuclei Engine Version: v3.7.1
Expected Behavior
The output when using -j is valid json. All the error/warning/... messages are emitted on stderr.
Steps To Reproduce
./nuclei -target http://honey.scanme.sh -j 2> stderr.txt [WRN] Loading 17 unsigned templates for scan. Use with caution. {"template":"http/cves/2019/CVE-2019-1010287.yaml","template-url":"https://cloud.projectdiscovery.io/public/CVE-2019-1010287","template-id":"CVE-2019-1010287",...
or
`./nuclei -target http://honey.scanme.sh -j | jq .
____ __ / / ()
/ __ / / / / / / _ / /
/ / / / // / // / __/ /
// //_,/_/_/_/_/ v3.7.1
[WRN] Found 2 templates with runtime error (use -validate flag for further examination)
[INF] Current nuclei version: v3.7.1 (latest)
[INF] Current nuclei-templates version: v10.4.1 (latest)
[INF] New templates added in latest release: 76
[INF] Templates loaded for current scan: 9976
[INF] Executing 9959 signed templates from projectdiscovery/nuclei-templates
[INF] Targets loaded for current scan: 1
jq: parse error: Invalid numeric literal at line 1, column 3
[INF] Templates clustered: 2260 (Reduced 2134 Requests)
[INF] Using Interactsh Server: oast.pro`
Relevant log output
The following log message is the problem:
[WRN] Loading 17 unsigned templates for scan. Use with caution.
Environment
- OS: Windows & Linux & ?
- Nuclei: 3.7.0 & 3.7.1
- Go:
Anything else?
No response
Is there an existing issue for this?
Current Behavior
I originally encountered this with v3.7.0 on windows but have reproduced with v3.7.1 on linux using the latest templates. Simply run nuclei with the -j flag and pass through something like jq or redirect the stderr to see the issue. Example output included in reproduction steps. The json output is corrupted by the warning message.
./nuclei --version [INF] Nuclei Engine Version: v3.7.1Expected Behavior
The output when using -j is valid json. All the error/warning/... messages are emitted on stderr.
Steps To Reproduce
./nuclei -target http://honey.scanme.sh -j 2> stderr.txt [WRN] Loading 17 unsigned templates for scan. Use with caution. {"template":"http/cves/2019/CVE-2019-1010287.yaml","template-url":"https://cloud.projectdiscovery.io/public/CVE-2019-1010287","template-id":"CVE-2019-1010287",...or
`./nuclei -target http://honey.scanme.sh -j | jq .
____ __ / / ()
/ __ / / / / / / _ / /
/ / / / // / // / __/ /
// //_,/_/_/_/_/ v3.7.1
[WRN] Found 2 templates with runtime error (use -validate flag for further examination)
[INF] Current nuclei version: v3.7.1 (latest)
[INF] Current nuclei-templates version: v10.4.1 (latest)
[INF] New templates added in latest release: 76
[INF] Templates loaded for current scan: 9976
[INF] Executing 9959 signed templates from projectdiscovery/nuclei-templates
[INF] Targets loaded for current scan: 1
jq: parse error: Invalid numeric literal at line 1, column 3
[INF] Templates clustered: 2260 (Reduced 2134 Requests)
[INF] Using Interactsh Server: oast.pro`
Relevant log output
The following log message is the problem: [WRN] Loading 17 unsigned templates for scan. Use with caution.Environment
Anything else?
No response