foreman_cve_scanner 0.0.2 → 0.5.0

data/webpack/components/CveScansTab.js

@@ -0,0 +1,192 @@
+/* eslint-disable import/no-unresolved */
+import React, { useMemo, useState } from 'react';
+import PropTypes from 'prop-types';
+import {
+  Button,
+  Pagination,
+  EmptyState,
+  EmptyStateIcon,
+  EmptyStateBody,
+  Title,
+} from '@patternfly/react-core';
+import { SearchIcon } from '@patternfly/react-icons';
+import { Table, Thead, Tbody, Tr, Th, Td } from '@patternfly/react-table';
+import { useAPI } from 'foremanReact/common/hooks/API/APIHooks';
+import { foremanUrl } from 'foremanReact/common/helpers';
+import { translate as __ } from 'foremanReact/common/I18n';
+import SkeletonLoader from 'foremanReact/components/common/SkeletonLoader';
+import { STATUS } from 'foremanReact/constants';
+import RelativeDateTime from 'foremanReact/components/common/dates/RelativeDateTime';
+import CveFindingsModal from './CveFindingsModal';
+import { noReportsBody, noReportsTitle } from './cve_helpers';
+
+const DEFAULT_PER_PAGE = 20;
+
+const CveScansTab = ({ response }) => {
+  const hostId = response?.id;
+  const [page, setPage] = useState(1);
+  const [perPage, setPerPage] = useState(DEFAULT_PER_PAGE);
+  const [isModalOpen, setIsModalOpen] = useState(false);
+  const [modalScanId, setModalScanId] = useState(null);
+  const [modalFilter, setModalFilter] = useState('all');
+
+  const historyUrl = hostId
+    ? foremanUrl(
+        `/api/v2/hosts/${hostId}/cve_scans?page=${page}&per_page=${perPage}`
+      )
+    : null;
+  const { response: apiResponse, status } = useAPI('get', historyUrl, {
+    key: `CVE_SCANS_TAB_${hostId}_${page}_${perPage}`,
+  });
+
+  const scans = useMemo(() => apiResponse?.results || [], [apiResponse]);
+  const itemCount = apiResponse?.total ?? scans.length;
+  if (!hostId) return null;
+
+  const openModal = (scanId, filter) => {
+    setModalScanId(scanId);
+    setModalFilter(filter || 'all');
+    setIsModalOpen(true);
+  };
+
+  const onSetPage = (_event, newPage) => setPage(newPage);
+  const onPerPageSelect = (_event, newPerPage) => {
+    setPerPage(newPerPage);
+    setPage(1);
+  };
+
+  return (
+    <>
+      <SkeletonLoader status={status || STATUS.PENDING}>
+        {scans.length === 0 ? (
+          <EmptyState>
+            <EmptyStateIcon icon={SearchIcon} />
+            <Title headingLevel="h4" size="md" ouiaId="cve-scans-empty-title">
+              {noReportsTitle()}
+            </Title>
+            <EmptyStateBody>{noReportsBody()}</EmptyStateBody>
+          </EmptyState>
+        ) : (
+          <>
+            <Pagination
+              itemCount={itemCount}
+              perPage={perPage}
+              page={page}
+              onSetPage={onSetPage}
+              onPerPageSelect={onPerPageSelect}
+              variant="top"
+              isCompact
+              ouiaId="cve-scans-pagination"
+            />
+            <Table
+              variant="compact"
+              aria-label="CVE scans history"
+              ouiaId="cve-scans-table"
+            >
+              <Thead>
+                <Tr ouiaId="cve-scans-header">
+                  <Th>{__('Reported at')}</Th>
+                  <Th>{__('Scanner')}</Th>
+                  <Th>{__('Total')}</Th>
+                  <Th>{__('Critical')}</Th>
+                  <Th>{__('High')}</Th>
+                  <Th>{__('Medium')}</Th>
+                  <Th>{__('Low')}</Th>
+                </Tr>
+              </Thead>
+              <Tbody>
+                {scans.map((scan, index) => (
+                  <Tr key={scan.id} ouiaId={`cve-scans-row-${index}`}>
+                    <Td dataLabel={__('Reported at')}>
+                      <Button
+                        variant="link"
+                        className="cve-summary-link"
+                        onClick={() => openModal(scan.id, 'all')}
+                        ouiaId={`cve-scans-open-${scan.id}`}
+                      >
+                        <RelativeDateTime
+                          date={scan.created_at}
+                          defaultValue={__('Unknown time')}
+                        />
+                      </Button>
+                    </Td>
+                    <Td dataLabel={__('Scanner')}>{scan.scanner}</Td>
+                    <Td dataLabel={__('Total')}>
+                      <Button
+                        variant="link"
+                        className="cve-summary-link"
+                        onClick={() => openModal(scan.id, 'all')}
+                        ouiaId={`cve-scans-total-${scan.id}`}
+                      >
+                        {scan.total}
+                      </Button>
+                    </Td>
+                    <Td dataLabel={__('Critical')}>
+                      <Button
+                        variant="link"
+                        className="cve-summary-link"
+                        onClick={() => openModal(scan.id, 'critical')}
+                        ouiaId={`cve-scans-critical-${scan.id}`}
+                      >
+                        {scan.critical}
+                      </Button>
+                    </Td>
+                    <Td dataLabel={__('High')}>
+                      <Button
+                        variant="link"
+                        className="cve-summary-link"
+                        onClick={() => openModal(scan.id, 'high')}
+                        ouiaId={`cve-scans-high-${scan.id}`}
+                      >
+                        {scan.high}
+                      </Button>
+                    </Td>
+                    <Td dataLabel={__('Medium')}>
+                      <Button
+                        variant="link"
+                        className="cve-summary-link"
+                        onClick={() => openModal(scan.id, 'medium')}
+                        ouiaId={`cve-scans-medium-${scan.id}`}
+                      >
+                        {scan.medium}
+                      </Button>
+                    </Td>
+                    <Td dataLabel={__('Low')}>
+                      <Button
+                        variant="link"
+                        className="cve-summary-link"
+                        onClick={() => openModal(scan.id, 'low')}
+                        ouiaId={`cve-scans-low-${scan.id}`}
+                      >
+                        {scan.low}
+                      </Button>
+                    </Td>
+                  </Tr>
+                ))}
+              </Tbody>
+            </Table>
+          </>
+        )}
+      </SkeletonLoader>
+      <CveFindingsModal
+        isOpen={isModalOpen}
+        onClose={() => setIsModalOpen(false)}
+        hostId={hostId}
+        scanId={modalScanId}
+        initialFilter={modalFilter}
+      />
+    </>
+  );
+};
+
+CveScansTab.propTypes = {
+  response: PropTypes.shape({
+    id: PropTypes.number,
+  }),
+};
+
+CveScansTab.defaultProps = {
+  response: undefined,
+};
+
+export default CveScansTab;

data/webpack/components/CveSummaryCell.js

@@ -0,0 +1,72 @@
+/* eslint-disable import/no-unresolved */
+import React, { useState } from 'react';
+import PropTypes from 'prop-types';
+import { Spinner } from '@patternfly/react-core';
+import { useAPI } from 'foremanReact/common/hooks/API/APIHooks';
+import { foremanUrl } from 'foremanReact/common/helpers';
+import { translate as __ } from 'foremanReact/common/I18n';
+import { STATUS } from 'foremanReact/constants';
+import SeverityIcon from './SeverityIcon';
+import CveFindingsModal from './CveFindingsModal';
+import './cve_scans.scss';
+
+const CveSummaryCell = ({ hostId, hostName }) => {
+  const url = hostId
+    ? foremanUrl(`/api/v2/hosts/${hostId}/cve_scans/latest`)
+    : null;
+  const { response, status } = useAPI('get', url, {
+    key: `CVE_SUMMARY_${hostId}`,
+  });
+
+  const [isModalOpen, setIsModalOpen] = useState(false);
+  if (!hostId) return <span className="cve-summary-empty">--</span>;
+  if (status === STATUS.PENDING) {
+    return (
+      <Spinner
+        size="sm"
+        aria-label={__('Loading CVE findings')}
+        ouiaId="cve-summary-loading"
+      />
+    );
+  }
+
+  if (!response) return <span className="cve-summary-empty">--</span>;
+
+  const total = response.total || 0;
+  const worst = response.summary?.worst || 'none';
+  const scanId = response.id;
+  const title = `${hostName || __('Host')}: ${total} ${__('findings')}`;
+
+  return (
+    <>
+      <button
+        type="button"
+        className="cve-summary cve-summary-link"
+        title={title}
+        onClick={() => setIsModalOpen(true)}
+      >
+        <SeverityIcon severity={worst} />
+        <span className="cve-summary-count">{total}</span>
+      </button>
+      <CveFindingsModal
+        isOpen={isModalOpen && !!scanId}
+        onClose={() => setIsModalOpen(false)}
+        hostId={hostId}
+        scanId={scanId}
+        initialFilter="all"
+      />
+    </>
+  );
+};
+
+CveSummaryCell.propTypes = {
+  hostId: PropTypes.number,
+  hostName: PropTypes.string,
+};
+
+CveSummaryCell.defaultProps = {
+  hostId: undefined,
+  hostName: undefined,
+};
+
+export default CveSummaryCell;

data/webpack/components/SeverityIcon.js

@@ -0,0 +1,56 @@
+/* eslint-disable import/no-unresolved */
+import React from 'react';
+import PropTypes from 'prop-types';
+import {
+  ExclamationCircleIcon,
+  ExclamationTriangleIcon,
+  InfoCircleIcon,
+  CheckCircleIcon,
+} from '@patternfly/react-icons';
+import { Icon } from '@patternfly/react-core';
+import './cve_scans.scss';
+
+const SeverityIcon = ({ severity }) => {
+  switch (severity) {
+    case 'critical':
+      return (
+        <Icon className="cve-severity cve-severity--critical">
+          <ExclamationCircleIcon />
+        </Icon>
+      );
+    case 'high':
+      return (
+        <Icon className="cve-severity cve-severity--high">
+          <ExclamationTriangleIcon />
+        </Icon>
+      );
+    case 'medium':
+      return (
+        <Icon className="cve-severity cve-severity--medium">
+          <InfoCircleIcon />
+        </Icon>
+      );
+    case 'low':
+      return (
+        <Icon className="cve-severity cve-severity--low">
+          <InfoCircleIcon />
+        </Icon>
+      );
+    default:
+      return (
+        <Icon className="cve-severity cve-severity--none">
+          <CheckCircleIcon />
+        </Icon>
+      );
+  }
+};
+
+SeverityIcon.propTypes = {
+  severity: PropTypes.string,
+};
+
+SeverityIcon.defaultProps = {
+  severity: 'none',
+};
+
+export default SeverityIcon;

data/webpack/components/__tests__/CveDetailsCard.test.js

@@ -0,0 +1,126 @@
+/* eslint-disable import/no-unresolved */
+import React from 'react';
+import { mount } from 'enzyme';
+import CveDetailsCard from '../CveDetailsCard';
+
+jest.mock('foremanReact/common/hooks/API/APIHooks', () => ({
+  useAPI: jest.fn(),
+}));
+
+jest.mock('foremanReact/components/HostDetails/Templates/CardItem/CardTemplate', () => (
+  { children }
+) => <div>{children}</div>);
+
+jest.mock('foremanReact/components/common/SkeletonLoader', () => (
+  { children }
+) => <div>{children}</div>);
+
+jest.mock('foremanReact/components/common/dates/RelativeDateTime', () => (
+  { date, defaultValue }
+) => <span>{date || defaultValue}</span>);
+
+jest.mock('../CveFindingsModal', () => () => <div data-test="modal" />);
+
+const { useAPI } = require('foremanReact/common/hooks/API/APIHooks');
+
+describe('CveDetailsCard', () => {
+  beforeEach(() => {
+    useAPI.mockReset();
+  });
+
+  it('renders recent scans and findings', () => {
+    const hostDetails = { id: 1 };
+    const historyResponse = {
+      results: [
+        { id: 1, created_at: '2026-02-20', scanner: 'trivy', total: 10 },
+        { id: 2, created_at: '2026-02-21', scanner: 'trivy', total: 12 },
+        { id: 3, created_at: '2026-02-22', scanner: 'grype', total: 8 },
+      ],
+    };
+    const latestResponse = {
+      id: 3,
+      created_at: '2026-02-22',
+      scanner: 'grype',
+      total: 8,
+      summary: { worst: 'high' },
+      critical: 1,
+      high: 1,
+      medium: 2,
+      low: 4,
+      findings: [
+        {
+          id: 'CVE-1',
+          name: 'pkg',
+          version: '1.0',
+          severity: 'HIGH',
+          published: '2026-02-10',
+        },
+      ],
+    };
+
+    useAPI.mockImplementation((_method, url) => {
+      if (url && url.includes('/latest')) {
+        return { response: latestResponse, status: 'RESOLVED' };
+      }
+      return { response: historyResponse, status: 'RESOLVED' };
+    });
+
+    const wrapper = mount(<CveDetailsCard hostDetails={hostDetails} />);
+
+    expect(wrapper.text()).toContain('Recent scans');
+    expect(wrapper.find('table').length).toBeGreaterThan(0);
+    expect(wrapper.text()).toContain('CVEs');
+    expect(wrapper.text()).toContain('pkg');
+  });
+
+  it('falls back to history when latest is empty', () => {
+    const hostDetails = { id: 1 };
+    const historyResponse = {
+      results: [{ id: 1, created_at: '2026-02-20', scanner: 'trivy', total: 10 }],
+    };
+
+    useAPI.mockImplementation((_method, url) => {
+      if (url && url.includes('/latest')) {
+        return { response: {}, status: 'RESOLVED' };
+      }
+      return { response: historyResponse, status: 'RESOLVED' };
+    });
+
+    const wrapper = mount(<CveDetailsCard hostDetails={hostDetails} />);
+    expect(wrapper.text()).toContain('Report');
+    expect(wrapper.text()).toContain('trivy');
+  });
+
+  it('prefers latest when present', () => {
+    const hostDetails = { id: 1 };
+    const historyResponse = {
+      results: [{ id: 1, created_at: '2026-02-20', scanner: 'trivy', total: 10 }],
+    };
+    const latestResponse = {
+      id: 2,
+      created_at: '2026-02-21',
+      scanner: 'grype',
+      total: 8,
+      summary: { worst: 'high' },
+      findings: [],
+    };
+
+    useAPI.mockImplementation((_method, url) => {
+      if (url && url.includes('/latest')) {
+        return { response: latestResponse, status: 'RESOLVED' };
+      }
+      return { response: historyResponse, status: 'RESOLVED' };
+    });
+
+    const wrapper = mount(<CveDetailsCard hostDetails={hostDetails} />);
+    expect(wrapper.text()).toContain('grype');
+  });
+
+  it('renders empty state when no scans', () => {
+    const hostDetails = { id: 1 };
+    useAPI.mockReturnValue({ response: null, status: 'RESOLVED' });
+
+    const wrapper = mount(<CveDetailsCard hostDetails={hostDetails} />);
+    expect(wrapper.text()).toContain('No CVE reports for this host');
+  });
+});

data/webpack/components/__tests__/CveFindingsModal.test.js

@@ -0,0 +1,78 @@
+/* eslint-disable import/no-unresolved */
+import React from 'react';
+import { mount } from 'enzyme';
+import CveFindingsModal from '../CveFindingsModal';
+
+jest.mock('foremanReact/common/hooks/API/APIHooks', () => ({
+  useAPI: jest.fn(),
+}));
+
+const { useAPI } = require('foremanReact/common/hooks/API/APIHooks');
+
+describe('CveFindingsModal', () => {
+  beforeEach(() => {
+    useAPI.mockReset();
+  });
+
+  it('filters findings by severity', () => {
+    useAPI.mockReturnValue({
+      response: {
+        id: 1,
+        created_at: '2026-02-22T10:00:00Z',
+        total: 2,
+        findings: [
+          { id: 'CVE-1', severity: 'HIGH', name: 'a', version: '1' },
+          { id: 'CVE-2', severity: 'LOW', name: 'b', version: '2' },
+        ],
+      },
+      status: 'RESOLVED',
+    });
+
+    const wrapper = mount(
+      <CveFindingsModal
+        isOpen
+        onClose={() => {}}
+        hostId={1}
+        scanId={1}
+        initialFilter="all"
+      />
+    );
+
+    expect(wrapper.text()).toContain('CVE-1');
+    expect(wrapper.text()).toContain('CVE-2');
+
+    const lowButton = wrapper
+      .find('button')
+      .filterWhere(node => node.text().toLowerCase() === 'low')
+      .first();
+    lowButton.simulate('click');
+    wrapper.update();
+
+    expect(wrapper.text()).toContain('CVE-2');
+    expect(wrapper.text()).not.toContain('CVE-1');
+  });
+
+  it('shows empty state when no findings', () => {
+    useAPI.mockReturnValue({
+      response: {
+        id: 1,
+        created_at: '2026-02-22T10:00:00Z',
+        total: 0,
+        findings: [],
+      },
+      status: 'RESOLVED',
+    });
+
+    const wrapper = mount(
+      <CveFindingsModal
+        isOpen
+        onClose={() => {}}
+        hostId={1}
+        scanId={1}
+        initialFilter="all"
+      />
+    );
+
+    expect(wrapper.text()).toContain('No findings for selected filter');
+  });
+});

data/webpack/components/__tests__/CveScansTab.test.js

@@ -0,0 +1,76 @@
+/* eslint-disable import/no-unresolved */
+import React from 'react';
+import { mount } from 'enzyme';
+import CveScansTab from '../CveScansTab';
+
+jest.mock('foremanReact/common/hooks/API/APIHooks', () => ({
+  useAPI: jest.fn(),
+}));
+
+jest.mock('foremanReact/components/common/SkeletonLoader', () => (
+  { children }
+) => <div>{children}</div>);
+
+jest.mock('foremanReact/components/common/dates/RelativeDateTime', () => (
+  { date, defaultValue }
+) => <span>{date || defaultValue}</span>);
+
+jest.mock('../CveFindingsModal', () => () => <div data-test="modal" />);
+
+const { useAPI } = require('foremanReact/common/hooks/API/APIHooks');
+
+describe('CveScansTab', () => {
+  beforeEach(() => {
+    useAPI.mockReset();
+  });
+
+  it('renders rows for scans', () => {
+    const scansResponse = {
+      results: [
+        {
+          id: 1,
+          created_at: '2026-02-20',
+          scanner: 'trivy',
+          total: 10,
+          critical: 1,
+          high: 2,
+          medium: 3,
+          low: 4,
+        },
+        {
+          id: 2,
+          created_at: '2026-02-21',
+          scanner: 'grype',
+          total: 5,
+          critical: 0,
+          high: 1,
+          medium: 1,
+          low: 3,
+        },
+      ],
+      total: 2,
+    };
+
+    useAPI.mockReturnValue({ response: scansResponse, status: 'RESOLVED' });
+
+    const wrapper = mount(<CveScansTab response={{ id: 1 }} />);
+
+    expect(wrapper.text()).toContain('Reported at');
+    expect(wrapper.text()).toContain('trivy');
+    expect(wrapper.text()).toContain('grype');
+  });
+
+  it('renders empty state with no scans', () => {
+    useAPI.mockReturnValue({ response: { results: [] }, status: 'RESOLVED' });
+
+    const wrapper = mount(<CveScansTab response={{ id: 1 }} />);
+    expect(wrapper.text()).toContain('No CVE reports for this host');
+  });
+
+  it('does not render when host id is missing', () => {
+    useAPI.mockReturnValue({ response: { results: [] }, status: 'RESOLVED' });
+
+    const wrapper = mount(<CveScansTab response={{}} />);
+    expect(wrapper.isEmptyRender()).toBe(true);
+  });
+});

data/webpack/components/__tests__/cve_helpers.test.js

@@ -0,0 +1,42 @@
+/* eslint-disable import/no-unresolved */
+import {
+  severityRank,
+  riskLevelFromWorst,
+  formatDateTime,
+  compareStrings,
+} from '../cve_helpers';
+
+describe('cve_helpers', () => {
+  it('maps severity ranks', () => {
+    expect(severityRank('CRITICAL')).toBe(4);
+    expect(severityRank('high')).toBe(3);
+    expect(severityRank('MEDIUM')).toBe(2);
+    expect(severityRank('low')).toBe(1);
+    expect(severityRank('unknown')).toBe(0);
+  });
+
+  it('maps risk levels from worst', () => {
+    expect(riskLevelFromWorst('critical')).toBe('high');
+    expect(riskLevelFromWorst('high')).toBe('high');
+    expect(riskLevelFromWorst('medium')).toBe('medium');
+    expect(riskLevelFromWorst('low')).toBe('low');
+    expect(riskLevelFromWorst('none')).toBe('none');
+  });
+
+  it('formats dates into yyyy-mm-dd hh:mm', () => {
+    const result = formatDateTime('2026-02-22T10:05:00Z');
+    expect(result).toContain('2026-02-22');
+    expect(result).toContain('10:05');
+  });
+
+  it('returns input when date is invalid', () => {
+    expect(formatDateTime('not-a-date')).toBe('not-a-date');
+  });
+
+  it('compares strings safely', () => {
+    expect(compareStrings('a', 'b')).toBeLessThan(0);
+    expect(compareStrings('b', 'a')).toBeGreaterThan(0);
+    expect(compareStrings('a', 'a')).toBe(0);
+    expect(compareStrings(null, 'a')).toBeLessThan(0);
+  });
+});

data/webpack/components/cve_helpers.js

@@ -0,0 +1,35 @@
+/* eslint-disable import/no-unresolved */
+import { translate as __ } from 'foremanReact/common/I18n';
+
+const SEVERITY_RANK = {
+  CRITICAL: 4,
+  HIGH: 3,
+  MEDIUM: 2,
+  LOW: 1,
+};
+
+export const severityRank = sev =>
+  SEVERITY_RANK[(sev || '').toUpperCase()] || 0;
+
+export const riskLevelFromWorst = worst => {
+  if (['critical', 'high'].includes(worst)) return 'high';
+  if (worst === 'medium') return 'medium';
+  if (worst === 'low') return 'low';
+  return 'none';
+};
+
+export const formatDateTime = value => {
+  if (!value) return '';
+  const d = new Date(value);
+  if (Number.isNaN(d.getTime())) return value;
+  const pad = n => String(n).padStart(2, '0');
+  return `${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())} ${pad(
+    d.getHours()
+  )}:${pad(d.getMinutes())}`;
+};
+
+export const compareStrings = (a, b) =>
+  (a || '').toString().localeCompare((b || '').toString());
+
+export const noReportsTitle = () => __('No CVE reports for this host');
+export const noReportsBody = () => __('Run a CVE scan to see results here.');