Importing scan data has been a long standing thorn in our side. To decouple the import process and encourage new import formats I authored a Ruby gem named odle(rubygem). odle takes XML data from various security tools and outputs their JSON equivalent. The goal is to be (1) simple, (2) fast, and (3) work on many platforms with only one dependency – nokogiri. Serpico now supports odle as a means of importing scan data.
Moving forward we would like to move away from other import processes including removing Metasploit integration. I believe this will allow us to support more input formats while making it far simpler to troubleshoot import issues. Also, the community as a whole benefits from odle rather than just the Serpico project. Cheers!