RubyGems - foreman_cve_scanner - Versions diffs - 0.0.2 → 0.5.0 - Mend

foreman_cve_scanner 0.0.2 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (48) hide show

checksums.yaml +4 -4
data/README.md +28 -16
data/Rakefile +2 -0
data/app/controllers/api/v2/cve_scans_controller.rb +66 -0
data/app/lib/actions/foreman_cve_scanner/cve_scanner_job.rb +3 -18
data/app/models/concerns/foreman_cve_scanner/host_extensions.rb +16 -0
data/app/models/foreman_cve_scanner/cve_scan.rb +15 -0
data/app/models/host_status/cve_status.rb +71 -0
data/app/services/foreman_cve_scanner/cve_report_scanner.rb +37 -35
data/app/services/foreman_cve_scanner/scan_importer.rb +105 -0
data/app/views/api/v2/cve_scans/base.json.rabl +5 -0
data/app/views/api/v2/cve_scans/index.json.rabl +5 -0
data/app/views/api/v2/cve_scans/latest.json.rabl +5 -0
data/app/views/api/v2/cve_scans/main.json.rabl +7 -0
data/app/views/api/v2/cve_scans/show.json.rabl +5 -0
data/app/views/foreman_cve_scanner/job_templates/run_cve_scanner.erb +4 -2
data/config/routes.rb +20 -0
data/db/migrate/20260221000000_create_foreman_cve_scanner_cve_scans.rb +22 -0
data/db/seeds.d/75_job_templates.rb +17 -0
data/lib/foreman_cve_scanner/engine.rb +25 -3
data/lib/foreman_cve_scanner/version.rb +3 -1
data/lib/foreman_cve_scanner.rb +4 -1
data/lib/tasks/foreman_cve_scanner_seeds.rake +12 -0
data/lib/tasks/rubocop.rake +33 -0
data/package.json +48 -0
data/test/actions/foreman_cve_scanner/cve_scanner_job_test.rb +54 -0
data/test/controllers/api/v2/cve_scans_controller_test.rb +78 -0
data/test/models/host_status/cve_status_test.rb +65 -0
data/test/services/foreman_cve_scanner/cve_report_scanner_test.rb +45 -17
data/test/services/foreman_cve_scanner/scan_importer_test.rb +85 -0
data/test/test_plugin_helper.rb +2 -0
data/webpack/components/CveDetailsCard.js +258 -0
data/webpack/components/CveFindingsModal.js +274 -0
data/webpack/components/CveHistoryTable.js +58 -0
data/webpack/components/CveOverviewCard.js +67 -0
data/webpack/components/CveScansTab.js +192 -0
data/webpack/components/CveSummaryCell.js +72 -0
data/webpack/components/SeverityIcon.js +56 -0
data/webpack/components/__tests__/CveDetailsCard.test.js +126 -0
data/webpack/components/__tests__/CveFindingsModal.test.js +78 -0
data/webpack/components/__tests__/CveScansTab.test.js +76 -0
data/webpack/components/__tests__/cve_helpers.test.js +42 -0
data/webpack/components/cve_helpers.js +35 -0
data/webpack/components/cve_scans.scss +200 -0
data/webpack/fills.js +1 -0
data/webpack/fills_index.js +38 -0
data/webpack/index.js +1 -0
metadata +49 -5

data/webpack/components/cve_scans.scss ADDED Viewed

@@ -0,0 +1,200 @@
+.cve-summary {
+  align-items: center;
+  display: inline-flex;
+  gap: 0.35rem;
+}
+.cve-summary-count {
+  font-weight: 600;
+}
+.cve-section-title {
+  margin-top: 1rem;
+  margin-bottom: 0.5rem;
+}
+.cve-severity {
+  display: inline-flex;
+}
+.cve-severity--critical,
+.cve-severity--high {
+  color: var(--pf-v5-global--danger-color--100);
+}
+.cve-severity--medium {
+  color: var(--pf-v5-global--warning-color--100);
+}
+.cve-severity--low {
+  color: var(--pf-v5-global--palette--blue-400);
+}
+.cve-severity--none {
+  color: var(--pf-v5-global--success-color--100);
+}
+.cve-summary-empty {
+  color: var(--pf-v5-global--disabled-color--200);
+}
+.cve-summary-link {
+  padding: 0;
+  margin: 0;
+}
+button.cve-summary {
+  background: none;
+  border: 0;
+  cursor: pointer;
+  font: inherit;
+}
+.cve-count {
+  align-items: center;
+  display: inline-flex;
+  gap: 0.35rem;
+}
+.cve-bubble {
+  align-items: center;
+  background: var(--pf-v5-global--palette--blue-200);
+  border-radius: 1em;
+  color: var(--pf-v5-global--palette--blue-600);
+  display: inline-flex;
+  font-weight: 600;
+  padding: 0 0.5rem;
+}
+.cve-total-bubble {
+  align-items: center;
+  border-radius: 1em;
+  display: inline-flex;
+  font-weight: 700;
+  padding: 0 0.5rem;
+}
+.cve-total-bubble--high {
+  background: var(--pf-v5-global--danger-color--100);
+  color: var(--pf-v5-global--BackgroundColor--100);
+}
+.cve-total-bubble--medium {
+  background: var(--pf-v5-global--warning-color--100);
+  color: var(--pf-v5-global--BackgroundColor--100);
+}
+.cve-total-bubble--low {
+  background: var(--pf-v5-global--palette--blue-400);
+  color: var(--pf-v5-global--BackgroundColor--100);
+}
+.cve-total-bubble--none {
+  background: var(--pf-v5-global--success-color--100);
+  color: var(--pf-v5-global--BackgroundColor--100);
+}
+.cve-counts {
+  display: grid;
+  gap: 0.35rem 1rem;
+  grid-template-columns: auto auto;
+  margin-top: 0.25rem;
+}
+.cve-counts--compact {
+  column-gap: 0.5rem;
+  row-gap: 0.25rem;
+  margin-top: 0.15rem;
+}
+.cve-filter-buttons {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 0.5rem;
+}
+.cve-sort-indicator {
+  font-size: 0.85em;
+}
+.cve-sortable {
+  cursor: pointer;
+}
+.cve-filter-button.is-active {
+  box-shadow: 0 0 0 2px var(--pf-v5-global--primary-color--100) inset;
+}
+.cve-filter-button {
+  background: var(--pf-v5-global--BackgroundColor--100);
+  border: 1px solid var(--pf-v5-global--BorderColor--100);
+  border-radius: 2px;
+  color: var(--pf-v5-global--Color--100);
+  cursor: pointer;
+  font: inherit;
+  padding: 0.25rem 0.75rem;
+}
+.cve-modal-body {
+  position: relative;
+  min-height: 420px;
+}
+.cve-modal-filters {
+  position: relative;
+  z-index: 1;
+}
+.cve-more {
+  margin-top: 0.5rem;
+}
+.cve-truncate {
+  display: inline-block;
+  max-width: 220px;
+  overflow: hidden;
+  text-overflow: ellipsis;
+  vertical-align: bottom;
+  white-space: nowrap;
+}
+.cve-col-severity {
+  width: 28px;
+}
+.cve-col-published {
+  width: 210px;
+}
+.cve-col-name {
+  width: 200px;
+}
+.cve-col-version {
+  width: 180px;
+}
+.cve-col-fixed {
+  width: 160px;
+}
+.cve-col-status {
+  width: 90px;
+}
+.cve-col-id {
+  width: 150px;
+}
+.cve-col-title {
+  width: 240px;
+}
+.cve-summary--icon-only {
+  width: 18px;
+}
+.cve-col-published,
+.cve-col-published * {
+  white-space: nowrap;
+}

data/webpack/fills.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import './fills_index';

data/webpack/fills_index.js ADDED Viewed

@@ -0,0 +1,38 @@
+/* eslint-disable import/no-unresolved */
+import React from 'react';
+import { addGlobalFill } from 'foremanReact/components/common/Fill/GlobalFill';
+import { registerColumns } from 'foremanReact/components/HostsIndex/Columns/core';
+import { translate as __ } from 'foremanReact/common/I18n';
+import CveDetailsCard from './components/CveDetailsCard';
+import CveScansTab from './components/CveScansTab';
+import CveSummaryCell from './components/CveSummaryCell';
+addGlobalFill(
+  'host-tab-details-cards',
+  'foreman-cve-scanner-details-card',
+  <CveDetailsCard key="foreman-cve-scanner-details-card" />,
+  2200
+);
+addGlobalFill(
+  'host-details-page-tabs',
+  'CVE scans',
+  <CveScansTab key="foreman-cve-scanner-scans-tab" />,
+  450,
+  { title: __('CVE scans') }
+);
+registerColumns([
+  {
+    columnName: 'cve_findings',
+    title: __('CVE'),
+    wrapper: hostDetails => (
+      <CveSummaryCell hostId={hostDetails?.id} hostName={hostDetails?.name} />
+    ),
+    weight: 450,
+    tableName: 'hosts',
+    categoryName: __('Security'),
+    categoryKey: 'security',
+    isSorted: false,
+  },
+]);

data/webpack/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ import './fills_index';

metadata CHANGED Viewed

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: foreman_cve_scanner
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.5.0
 platform: ruby
 authors:
 - Bernhard Suttner
 bindir: bin
 cert_chain: []
-date: 2025-07-31 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: foreman_remote_execution
@@ -18,7 +18,7 @@ dependencies:
         version: '9.0'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '15'
+        version: '17'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -28,7 +28,7 @@ dependencies:
         version: '9.0'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '15'
+        version: '17'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -67,18 +67,54 @@ files:
 - LICENSE
 - README.md
 - Rakefile
+- app/controllers/api/v2/cve_scans_controller.rb
 - app/lib/actions/foreman_cve_scanner/cve_scanner_job.rb
+- app/models/concerns/foreman_cve_scanner/host_extensions.rb
+- app/models/foreman_cve_scanner/cve_scan.rb
+- app/models/host_status/cve_status.rb
 - app/services/foreman_cve_scanner/cve_report_scanner.rb
+- app/services/foreman_cve_scanner/scan_importer.rb
+- app/views/api/v2/cve_scans/base.json.rabl
+- app/views/api/v2/cve_scans/index.json.rabl
+- app/views/api/v2/cve_scans/latest.json.rabl
+- app/views/api/v2/cve_scans/main.json.rabl
+- app/views/api/v2/cve_scans/show.json.rabl
 - app/views/foreman_cve_scanner/job_templates/install_cve_scanners.erb
 - app/views/foreman_cve_scanner/job_templates/run_cve_scanner.erb
+- config/routes.rb
+- db/migrate/20260221000000_create_foreman_cve_scanner_cve_scans.rb
+- db/seeds.d/75_job_templates.rb
 - lib/foreman_cve_scanner.rb
 - lib/foreman_cve_scanner/engine.rb
 - lib/foreman_cve_scanner/version.rb
+- lib/tasks/foreman_cve_scanner_seeds.rake
 - lib/tasks/foreman_cve_scanner_tasks.rake
+- lib/tasks/rubocop.rake
+- package.json
+- test/actions/foreman_cve_scanner/cve_scanner_job_test.rb
+- test/controllers/api/v2/cve_scans_controller_test.rb
 - test/fixtures/grype.json
 - test/fixtures/trivy.json
+- test/models/host_status/cve_status_test.rb
 - test/services/foreman_cve_scanner/cve_report_scanner_test.rb
+- test/services/foreman_cve_scanner/scan_importer_test.rb
 - test/test_plugin_helper.rb
+- webpack/components/CveDetailsCard.js
+- webpack/components/CveFindingsModal.js
+- webpack/components/CveHistoryTable.js
+- webpack/components/CveOverviewCard.js
+- webpack/components/CveScansTab.js
+- webpack/components/CveSummaryCell.js
+- webpack/components/SeverityIcon.js
+- webpack/components/__tests__/CveDetailsCard.test.js
+- webpack/components/__tests__/CveFindingsModal.test.js
+- webpack/components/__tests__/CveScansTab.test.js
+- webpack/components/__tests__/cve_helpers.test.js
+- webpack/components/cve_helpers.js
+- webpack/components/cve_scans.scss
+- webpack/fills.js
+- webpack/fills_index.js
+- webpack/index.js
 homepage: https://github.com/ATIX-AG/foreman_cve_scanner
 licenses:
 - GPL-3.0
@@ -101,11 +137,19 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.6.9
+rubygems_version: 4.0.10
 specification_version: 4
 summary: Run CVE scan on host and collect report
 test_files:
+- test/actions/foreman_cve_scanner/cve_scanner_job_test.rb
+- test/controllers/api/v2/cve_scans_controller_test.rb
 - test/fixtures/grype.json
 - test/fixtures/trivy.json
+- test/models/host_status/cve_status_test.rb
 - test/services/foreman_cve_scanner/cve_report_scanner_test.rb
+- test/services/foreman_cve_scanner/scan_importer_test.rb
 - test/test_plugin_helper.rb
+- webpack/components/__tests__/CveDetailsCard.test.js
+- webpack/components/__tests__/CveFindingsModal.test.js
+- webpack/components/__tests__/CveScansTab.test.js
+- webpack/components/__tests__/cve_helpers.test.js