RubyGems - fluent-plugin-jfrog-siem - Versions diffs - 2.0.0 → 2.0.3 - Mend

fluent-plugin-jfrog-siem 2.0.0 → 2.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/fluent-plugin-jfrog-siem.gemspec +4 -4
data/lib/fluent/plugin/in_jfrog_siem.rb +1 -1
data/lib/fluent/plugin/xray.rb +1 -1
data/test/plugin/test_in_jfrog_siem.rb +9 -27
metadata +11 -10
data/CHANGELOG.md +0 -36

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e34dd9d1fb60e95b931f7c67bb508e635057b9e2f349f681eb2b54cb182c2396
-  data.tar.gz: b0acda337195accb81ce6bf3ee7bf05ef7e79630793dbc7553c0df5e541e26a3
+  metadata.gz: 76d23b95fd222cac88bfbd167fbf6d493b9aae3430c16cf130b4ed58416cdeb8
+  data.tar.gz: 98e8252cf0d65c4334b263d4d06deec94f9813c442da6b9eed1e1c50aa899add
 SHA512:
-  metadata.gz: 9116c506cf562af1566e6001748f5464752b2c07aace2d9f6fe04573c5a97db4cbf0e638d048dea536387559a71fa493fad882dc55650f1597c4030ab13be962
-  data.tar.gz: 2aaeaa3f4a22753db0b97c35b93938c4049cb9037f56f3cc6199dc222034a9d26609e1906973c0b9f11960f856227b2cf93ab000e8bd677aee9045df0bd684b0
+  metadata.gz: d2944a1d52eedc69d7a681cd4121f42f8e5bb963339186bfa71b57da5eacae2268d12123fa7b2a4fc20998e81354f1b63ad86d0d80f891873ad7abe9ceff890e
+  data.tar.gz: 28223be2c6646a5878330df60c4f6803c7ed534b13c12204af11804dc68494a97af18d6a95fc5c5c8d70679867b0ad35f71a2a2cb01a0024be0e7b8129d56cd6

data/fluent-plugin-jfrog-siem.gemspec CHANGED Viewed

@@ -3,13 +3,13 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 Gem::Specification.new do |spec|
   spec.name    = "fluent-plugin-jfrog-siem"
-  spec.version = "2.0.0"
-  spec.authors = ["John Peterson", "Mahitha Byreddy"]
-  spec.email   = ["johnp@jfrog.com", "mahithab@jfrog.com"]
+  spec.version = "2.0.3"
+  spec.authors = ["Mahitha Byreddy", "Sudhindra Rao","Giridharan Ramasamy"]
+  spec.email   = ["mahithab@jfrog.com", "sudhindrar@jfrog.com", "girir@jfrog.com"]
   spec.summary       = %q{JFrog SIEM fluent input plugin will send the SIEM events from JFrog Xray to Fluentd}
   spec.description   = %q{JFrog SIEM fluent input plugin will send the SIEM events from JFrog Xray to Fluentd which can then be delivered to whatever output plugin specified}
-  spec.homepage      = "https://github.com/jfrog/log-analytics"
+  spec.homepage      = "https://github.com/jfrog/fluent-plugin-jfrog-siem"
   spec.license       = "Apache-2.0"
   test_files, files  = `git ls-files -z`.split("\x0").partition do |f|

data/lib/fluent/plugin/in_jfrog_siem.rb CHANGED Viewed

@@ -31,7 +31,7 @@ module Fluent
       config_param :tag, :string, default: ""
       config_param :jpd_url, :string, default: ""
       config_param :username, :string, default: ""
-      config_param :apikey, :string, default: ""
+      config_param :apikey, :string, default: "", :secret => true
       config_param :batch_size, :integer, default: 25
       config_param :wait_interval, :integer, default: 60
       config_param :from_date, :string, default: ""

data/lib/fluent/plugin/xray.rb CHANGED Viewed

@@ -58,7 +58,7 @@ class Xray
   def get_violations_detail(xray_violation_detail_url)
     response = RestClient::Request.new(
         :method => :get,
-        :url => xray_violation_detail_url,
+        :url => @jpd_url + xray_violation_detail_url[xray_violation_detail_url.index('/xray/'),xray_violation_detail_url.length],
         :user => @username,
         :password => @api_key
     ).execute do |response, request, result|

data/test/plugin/test_in_jfrog_siem.rb CHANGED Viewed

@@ -11,34 +11,16 @@ class JfrogSiemInputTest < Test::Unit::TestCase
   end
   # Default configuration for tests
-  # CONFIG = %[
-  #   tag "partnership.test_tag"
-  #   jpd_url "https://partnership.jfrog.io/"
-  #   username "sudhindrar"
-  #   apikey "AKCp8ihpNg2JE5PV3nRXZQsmMGmzX9VTX6wN51hQBFRC1CXQWzGrKQvFL1tsw7aochjoQXAZq"
-  #   pos_file "test_pos.txt"
-  #   wait_interval 30
-  # ]
   CONFIG = %[
-    tag "sudhindra-xray-rt.test_tag"
-    jpd_url "https://sudhindra-xray-rt.jfrog.tech/"
-    username "admin"
-    apikey "AKCp8jQd1zP4oKv43SNgewrNwikd1iAQznfhSfx3T249eVMkGnJnSjCpNsuv8vtHWChKLfJ1w"
-    wait_interval 1
-    from_date "2016-01-01"
-  ]
-  # CONFIG = %[
-  #   tag "jfrog.xray.siem.vulnerabilities"
-  #   jpd_url "JPDURL"
-  #   username "admin"
-  #   apikey "APIKEY"
-  #   pos_file_path "#{ENV['JF_PRODUCT_DATA_INTERNAL']}/log/"
-  #   wait_interval 10
-  #   from_date "2016-01-01"
-  #   batch_size 25
-  # ]
+     tag "jfrog.xray.siem.vulnerabilities"
+     jpd_url "JPDURL"
+     username "admin"
+     apikey "APIKEY"
+     pos_file_path "#{ENV['JF_PRODUCT_DATA_INTERNAL']}/log/"
+     wait_interval 10
+     from_date "2016-01-01"
+     batch_size 25
+   ]
   private

metadata CHANGED Viewed

@@ -1,15 +1,16 @@
 --- !ruby/object:Gem::Specification
 name: fluent-plugin-jfrog-siem
 version: !ruby/object:Gem::Version
-  version: 2.0.0
+  version: 2.0.3
 platform: ruby
 authors:
-- John Peterson
 - Mahitha Byreddy
-autorequire:
+- Sudhindra Rao
+- Giridharan Ramasamy
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-08-02 00:00:00.000000000 Z
+date: 2022-03-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -174,14 +175,14 @@ dependencies:
 description: JFrog SIEM fluent input plugin will send the SIEM events from JFrog Xray
   to Fluentd which can then be delivered to whatever output plugin specified
 email:
-- johnp@jfrog.com
 - mahithab@jfrog.com
+- sudhindrar@jfrog.com
+- girir@jfrog.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
 - ".rspec"
-- CHANGELOG.md
 - Gemfile
 - Gemfile.lock
 - LICENSE
@@ -197,11 +198,11 @@ files:
 - spec/xray_spec.rb
 - test/helper.rb
 - test/plugin/test_in_jfrog_siem.rb
-homepage: https://github.com/jfrog/log-analytics
+homepage: https://github.com/jfrog/fluent-plugin-jfrog-siem
 licenses:
 - Apache-2.0
 metadata: {}
-post_install_message:
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -216,8 +217,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
-signing_key:
+rubygems_version: 3.1.6
+signing_key:
 specification_version: 4
 summary: JFrog SIEM fluent input plugin will send the SIEM events from JFrog Xray
   to Fluentd

data/CHANGELOG.md DELETED Viewed

@@ -1,36 +0,0 @@
-# JFrog Fluentd SIEM Input Plugin Changelog
-All changes to the SIEM plugin will be documented in this file.
-## [1.0.0] - May 18, 2020
-* [BREAKING] Using JFrog API Key for authentication
-## [0.1.9] - May 17, 2021
-* Handling the case where violations are left in a batch to be processed
-## [0.1.8] - May 10, 2021
-* Fixing persist, not persist item conditions
-## [0.1.7] - April 21, 2021
-* Adding policies and rules to payload
-## [0.1.6] - April 13, 2021
-* Adding additonal parameters to match with access logs for correlation
-## [0.1.5] - March 29, 2021
-* Normalizing the format of Impacted Artifact, fixing properties not found case
-## [0.1.4] - February 02, 2021
-* Adding dependencies, gemspec updates
-## [0.1.3] - January 21, 2021
-* Fixing thread pool issues (moving loop inside a thread pool)
-## [0.1.2] - November 17, 2020
-* Changes to better README
-## [0.1.1] - November 17, 2020
-* Adding dependencies to gemspec
-## [0.1.0] - October 05, 2020
-* Initial release of Jfrog Logs Analytic integration