PyPI - binalyze-air-sdk - Versions diffs - 1.0.2__py3-none-any.whl → 1.0.3__py3-none-any.whl - Mend

binalyze-air-sdk 1.0.2py3-none-any.whl → 1.0.3py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (142) hide show

binalyze_air/__init__.py +77 -77
binalyze_air/apis/__init__.py +67 -27
binalyze_air/apis/acquisitions.py +107 -0
binalyze_air/apis/api_tokens.py +49 -0
binalyze_air/apis/assets.py +161 -0
binalyze_air/apis/audit_logs.py +26 -0
binalyze_air/apis/{authentication.py → auth.py} +29 -27
binalyze_air/apis/auto_asset_tags.py +79 -75
binalyze_air/apis/backup.py +177 -0
binalyze_air/apis/baseline.py +46 -0
binalyze_air/apis/cases.py +225 -0
binalyze_air/apis/cloud_forensics.py +116 -0
binalyze_air/apis/event_subscription.py +96 -96
binalyze_air/apis/evidence.py +249 -53
binalyze_air/apis/interact.py +153 -36
binalyze_air/apis/investigation_hub.py +234 -0
binalyze_air/apis/license.py +104 -0
binalyze_air/apis/logger.py +83 -0
binalyze_air/apis/multipart_upload.py +201 -0
binalyze_air/apis/notifications.py +115 -0
binalyze_air/apis/organizations.py +267 -0
binalyze_air/apis/params.py +44 -39
binalyze_air/apis/policies.py +186 -0
binalyze_air/apis/preset_filters.py +79 -0
binalyze_air/apis/recent_activities.py +71 -0
binalyze_air/apis/relay_server.py +104 -0
binalyze_air/apis/settings.py +395 -27
binalyze_air/apis/tasks.py +80 -0
binalyze_air/apis/triage.py +197 -0
binalyze_air/apis/user_management.py +183 -74
binalyze_air/apis/webhook_executions.py +50 -0
binalyze_air/apis/webhooks.py +322 -230
binalyze_air/base.py +207 -133
binalyze_air/client.py +217 -1337
binalyze_air/commands/__init__.py +175 -145
binalyze_air/commands/acquisitions.py +661 -387
binalyze_air/commands/api_tokens.py +55 -0
binalyze_air/commands/assets.py +324 -362
binalyze_air/commands/{authentication.py → auth.py} +36 -36
binalyze_air/commands/auto_asset_tags.py +230 -230
binalyze_air/commands/backup.py +47 -0
binalyze_air/commands/baseline.py +32 -396
binalyze_air/commands/cases.py +609 -602
binalyze_air/commands/cloud_forensics.py +88 -0
binalyze_air/commands/event_subscription.py +101 -101
binalyze_air/commands/evidences.py +918 -988
binalyze_air/commands/interact.py +172 -58
binalyze_air/commands/investigation_hub.py +315 -0
binalyze_air/commands/license.py +183 -0
binalyze_air/commands/logger.py +126 -0
binalyze_air/commands/multipart_upload.py +363 -0
binalyze_air/commands/notifications.py +45 -0
binalyze_air/commands/organizations.py +200 -221
binalyze_air/commands/policies.py +175 -203
binalyze_air/commands/preset_filters.py +55 -0
binalyze_air/commands/recent_activities.py +32 -0
binalyze_air/commands/relay_server.py +144 -0
binalyze_air/commands/settings.py +431 -29
binalyze_air/commands/tasks.py +95 -56
binalyze_air/commands/triage.py +224 -360
binalyze_air/commands/user_management.py +351 -126
binalyze_air/commands/webhook_executions.py +77 -0
binalyze_air/config.py +244 -244
binalyze_air/exceptions.py +49 -49
binalyze_air/http_client.py +426 -305
binalyze_air/models/__init__.py +287 -285
binalyze_air/models/acquisitions.py +365 -250
binalyze_air/models/api_tokens.py +73 -0
binalyze_air/models/assets.py +438 -438
binalyze_air/models/audit.py +247 -272
binalyze_air/models/audit_logs.py +14 -0
binalyze_air/models/{authentication.py → auth.py} +69 -69
binalyze_air/models/auto_asset_tags.py +227 -116
binalyze_air/models/backup.py +138 -0
binalyze_air/models/baseline.py +231 -231
binalyze_air/models/cases.py +275 -275
binalyze_air/models/cloud_forensics.py +145 -0
binalyze_air/models/event_subscription.py +170 -171
binalyze_air/models/evidence.py +65 -65
binalyze_air/models/evidences.py +367 -348
binalyze_air/models/interact.py +266 -135
binalyze_air/models/investigation_hub.py +265 -0
binalyze_air/models/license.py +150 -0
binalyze_air/models/logger.py +83 -0
binalyze_air/models/multipart_upload.py +352 -0
binalyze_air/models/notifications.py +138 -0
binalyze_air/models/organizations.py +293 -293
binalyze_air/models/params.py +153 -127
binalyze_air/models/policies.py +260 -249
binalyze_air/models/preset_filters.py +79 -0
binalyze_air/models/recent_activities.py +70 -0
binalyze_air/models/relay_server.py +121 -0
binalyze_air/models/settings.py +538 -84
binalyze_air/models/tasks.py +215 -149
binalyze_air/models/triage.py +141 -142
binalyze_air/models/user_management.py +200 -97
binalyze_air/models/webhook_executions.py +33 -0
binalyze_air/queries/__init__.py +121 -133
binalyze_air/queries/acquisitions.py +155 -155
binalyze_air/queries/api_tokens.py +46 -0
binalyze_air/queries/assets.py +186 -105
binalyze_air/queries/audit.py +400 -416
binalyze_air/queries/{authentication.py → auth.py} +55 -55
binalyze_air/queries/auto_asset_tags.py +59 -59
binalyze_air/queries/backup.py +66 -0
binalyze_air/queries/baseline.py +21 -185
binalyze_air/queries/cases.py +292 -292
binalyze_air/queries/cloud_forensics.py +137 -0
binalyze_air/queries/event_subscription.py +54 -54
binalyze_air/queries/evidence.py +139 -139
binalyze_air/queries/evidences.py +279 -279
binalyze_air/queries/interact.py +140 -28
binalyze_air/queries/investigation_hub.py +329 -0
binalyze_air/queries/license.py +85 -0
binalyze_air/queries/logger.py +58 -0
binalyze_air/queries/multipart_upload.py +180 -0
binalyze_air/queries/notifications.py +71 -0
binalyze_air/queries/organizations.py +222 -222
binalyze_air/queries/params.py +154 -115
binalyze_air/queries/policies.py +149 -149
binalyze_air/queries/preset_filters.py +60 -0
binalyze_air/queries/recent_activities.py +44 -0
binalyze_air/queries/relay_server.py +42 -0
binalyze_air/queries/settings.py +533 -20
binalyze_air/queries/tasks.py +125 -81
binalyze_air/queries/triage.py +230 -230
binalyze_air/queries/user_management.py +193 -83
binalyze_air/queries/webhook_executions.py +39 -0
binalyze_air_sdk-1.0.3.dist-info/METADATA +752 -0
binalyze_air_sdk-1.0.3.dist-info/RECORD +132 -0
{binalyze_air_sdk-1.0.2.dist-info → binalyze_air_sdk-1.0.3.dist-info}/WHEEL +1 -1
binalyze_air/apis/endpoints.py +0 -22
binalyze_air/apis/evidences.py +0 -216
binalyze_air/apis/users.py +0 -68
binalyze_air/commands/users.py +0 -101
binalyze_air/models/endpoints.py +0 -76
binalyze_air/models/users.py +0 -82
binalyze_air/queries/endpoints.py +0 -25
binalyze_air/queries/users.py +0 -69
binalyze_air_sdk-1.0.2.dist-info/METADATA +0 -706
binalyze_air_sdk-1.0.2.dist-info/RECORD +0 -82
{binalyze_air_sdk-1.0.2.dist-info → binalyze_air_sdk-1.0.3.dist-info}/top_level.txt +0 -0

binalyze_air/commands/triage.py CHANGED Viewed

@@ -1,360 +1,224 @@
-"""
-Triage-related commands for the Binalyze AIR SDK.
-"""
-from typing import Dict, Any, Union
-from ..base import Command
-from ..models.triage import (
-    TriageRule, TriageTag, TriageProfile, CreateTriageRuleRequest,
-    UpdateTriageRuleRequest, CreateTriageTagRequest, CreateTriageProfileRequest
-)
-from ..http_client import HTTPClient
-class CreateTriageRuleCommand(Command[TriageRule]):
-    """Command to create a new triage rule."""
-    def __init__(self, http_client: HTTPClient, request: Union[CreateTriageRuleRequest, Dict[str, Any]]):
-        self.http_client = http_client
-        self.request = request
-    def execute(self) -> TriageRule:
-        """Execute the command to create a triage rule."""
-        # Handle both dict and model objects
-        if isinstance(self.request, dict):
-            data = self.request.copy()
-        else:
-            # Convert SDK model fields to API fields
-            request_dict = self.request.model_dump(exclude_none=True)
-            data = {
-                "description": request_dict.get("description") or request_dict.get("name", ""),
-                "rule": request_dict.get("rule_content", ""),
-                "engine": request_dict.get("type", "yara"),
-                "searchIn": request_dict.get("search_in", "filesystem"),
-                "organizationIds": [request_dict.get("organization_id", 0)]
-            }
-        response = self.http_client.post("triages/rules", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("_id"),
-            "name": entity_data.get("description", ""),  # API uses description as name
-            "description": entity_data.get("description"),
-            "type": entity_data.get("engine"),  # API uses engine field
-            "rule_content": entity_data.get("rule", ""),
-            "search_in": entity_data.get("searchIn"),
-            "enabled": entity_data.get("enabled", True),
-            "severity": entity_data.get("severity", "medium"),
-            "tags": entity_data.get("tags", []),
-            "organization_id": entity_data.get("organizationIds", [0])[0] if entity_data.get("organizationIds") else 0,
-            "organization_ids": entity_data.get("organizationIds", []),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy"),
-            "updated_by": entity_data.get("updatedBy"),
-            "match_count": entity_data.get("matchCount", 0),
-            "last_match": entity_data.get("lastMatch"),
-            "deletable": entity_data.get("deletable"),
-        }
-        # Remove None values
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageRule(**mapped_data)
-class UpdateTriageRuleCommand(Command[TriageRule]):
-    """Command to update an existing triage rule."""
-    def __init__(self, http_client: HTTPClient, rule_id: str, request: Union[UpdateTriageRuleRequest, Dict[str, Any]]):
-        self.http_client = http_client
-        self.rule_id = rule_id
-        self.request = request
-    def execute(self) -> TriageRule:
-        """Execute the command to update a triage rule."""
-        # Handle both dict and model objects
-        if isinstance(self.request, dict):
-            data = self.request.copy()
-        else:
-            # Convert SDK model fields to API fields
-            request_dict = self.request.model_dump(exclude_none=True)
-            data = {}
-            # Map SDK fields to API fields for update
-            if "description" in request_dict or "name" in request_dict:
-                data["description"] = request_dict.get("description") or request_dict.get("name", "")
-            if "rule_content" in request_dict:
-                data["rule"] = request_dict.get("rule_content")
-            if "type" in request_dict:
-                data["engine"] = request_dict.get("type")
-            if "search_in" in request_dict:
-                data["searchIn"] = request_dict.get("search_in")
-            if "organization_id" in request_dict:
-                data["organizationIds"] = [request_dict.get("organization_id")]
-            if "enabled" in request_dict:
-                data["enabled"] = request_dict.get("enabled")
-        response = self.http_client.put(f"triages/rules/{self.rule_id}", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("_id"),
-            "name": entity_data.get("description", ""),  # API uses description as name
-            "description": entity_data.get("description"),
-            "type": entity_data.get("engine"),  # API uses engine field
-            "rule_content": entity_data.get("rule", ""),
-            "search_in": entity_data.get("searchIn"),
-            "enabled": entity_data.get("enabled", True),
-            "severity": entity_data.get("severity", "medium"),
-            "tags": entity_data.get("tags", []),
-            "organization_id": entity_data.get("organizationIds", [0])[0] if entity_data.get("organizationIds") else 0,
-            "organization_ids": entity_data.get("organizationIds", []),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy"),
-            "updated_by": entity_data.get("updatedBy"),
-            "match_count": entity_data.get("matchCount", 0),
-            "last_match": entity_data.get("lastMatch"),
-            "deletable": entity_data.get("deletable"),
-        }
-        # Remove None values
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageRule(**mapped_data)
-class DeleteTriageRuleCommand(Command[Dict[str, Any]]):
-    """Command to delete a triage rule."""
-    def __init__(self, http_client: HTTPClient, rule_id: str):
-        self.http_client = http_client
-        self.rule_id = rule_id
-    def execute(self) -> Dict[str, Any]:
-        """Execute the command to delete a triage rule."""
-        response = self.http_client.delete(f"triages/rules/{self.rule_id}")
-        return response
-class EnableTriageRuleCommand(Command[TriageRule]):
-    """Command to enable a triage rule."""
-    def __init__(self, http_client: HTTPClient, rule_id: str):
-        self.http_client = http_client
-        self.rule_id = rule_id
-    def execute(self) -> TriageRule:
-        """Execute the command to enable a triage rule."""
-        data = {"enabled": True}
-        response = self.http_client.put(f"triages/rules/{self.rule_id}", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("_id"),
-            "name": entity_data.get("name"),
-            "description": entity_data.get("description"),
-            "type": entity_data.get("type"),
-            "rule_content": entity_data.get("ruleContent", ""),
-            "enabled": entity_data.get("enabled", True),
-            "severity": entity_data.get("severity", "medium"),
-            "tags": entity_data.get("tags", []),
-            "organization_id": entity_data.get("organizationId", 0),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy"),
-            "updated_by": entity_data.get("updatedBy"),
-            "match_count": entity_data.get("matchCount", 0),
-            "last_match": entity_data.get("lastMatch"),
-        }
-        # Remove None values
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageRule(**mapped_data)
-class DisableTriageRuleCommand(Command[TriageRule]):
-    """Command to disable a triage rule."""
-    def __init__(self, http_client: HTTPClient, rule_id: str):
-        self.http_client = http_client
-        self.rule_id = rule_id
-    def execute(self) -> TriageRule:
-        """Execute the command to disable a triage rule."""
-        data = {"enabled": False}
-        response = self.http_client.put(f"triages/rules/{self.rule_id}", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("_id"),
-            "name": entity_data.get("name"),
-            "description": entity_data.get("description"),
-            "type": entity_data.get("type"),
-            "rule_content": entity_data.get("ruleContent", ""),
-            "enabled": entity_data.get("enabled", True),
-            "severity": entity_data.get("severity", "medium"),
-            "tags": entity_data.get("tags", []),
-            "organization_id": entity_data.get("organizationId", 0),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy"),
-            "updated_by": entity_data.get("updatedBy"),
-            "match_count": entity_data.get("matchCount", 0),
-            "last_match": entity_data.get("lastMatch"),
-        }
-        # Remove None values
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageRule(**mapped_data)
-class CreateTriageTagCommand(Command[TriageTag]):
-    """Command to create a new triage tag."""
-    def __init__(self, http_client: HTTPClient, request: Union[CreateTriageTagRequest, Dict[str, Any]]):
-        self.http_client = http_client
-        self.request = request
-    def execute(self) -> TriageTag:
-        """Execute the command to create a triage tag."""
-        # Handle both dict and model objects
-        if isinstance(self.request, dict):
-            data = self.request
-        else:
-            data = self.request.model_dump(exclude_none=True)
-        response = self.http_client.post("triages/tags", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("id") or entity_data.get("_id"),  # Handle both id and _id
-            "name": entity_data.get("name"),
-            "description": entity_data.get("description"),
-            "color": entity_data.get("color", "#3498db"),
-            "organization_id": entity_data.get("organizationId", 0),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy", "Unknown"),  # Provide default for required field
-            "usage_count": entity_data.get("usageCount") or entity_data.get("count", 0),  # Handle both count and usageCount
-        }
-        # Remove None values but keep defaults for required fields
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageTag(**mapped_data)
-class DeleteTriageTagCommand(Command[Dict[str, Any]]):
-    """Command to delete a triage tag."""
-    def __init__(self, http_client: HTTPClient, tag_id: str):
-        self.http_client = http_client
-        self.tag_id = tag_id
-    def execute(self) -> Dict[str, Any]:
-        """Execute the command to delete a triage tag."""
-        response = self.http_client.delete(f"triage/tags/{self.tag_id}")
-        return response
-class CreateTriageProfileCommand(Command[TriageProfile]):
-    """Command to create a new triage profile."""
-    def __init__(self, http_client: HTTPClient, request: Union[CreateTriageProfileRequest, Dict[str, Any]]):
-        self.http_client = http_client
-        self.request = request
-    def execute(self) -> TriageProfile:
-        """Execute the command to create a triage profile."""
-        # Handle both dict and model objects
-        if isinstance(self.request, dict):
-            data = self.request
-        else:
-            data = self.request.model_dump(exclude_none=True)
-        response = self.http_client.post("triage/profiles", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("_id"),
-            "name": entity_data.get("name"),
-            "description": entity_data.get("description"),
-            "rules": entity_data.get("rules", []),
-            "enabled": entity_data.get("enabled", True),
-            "organization_id": entity_data.get("organizationId", 0),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy"),
-            "updated_by": entity_data.get("updatedBy"),
-        }
-        # Remove None values
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageProfile(**mapped_data)
-class UpdateTriageProfileCommand(Command[TriageProfile]):
-    """Command to update an existing triage profile."""
-    def __init__(self, http_client: HTTPClient, profile_id: str, request: Union[CreateTriageProfileRequest, Dict[str, Any]]):
-        self.http_client = http_client
-        self.profile_id = profile_id
-        self.request = request
-    def execute(self) -> TriageProfile:
-        """Execute the command to update a triage profile."""
-        # Handle both dict and model objects
-        if isinstance(self.request, dict):
-            data = self.request
-        else:
-            data = self.request.model_dump(exclude_none=True)
-        response = self.http_client.put(f"triage/profiles/{self.profile_id}", json_data=data)
-        entity_data = response.get("result", {})
-        mapped_data = {
-            "id": entity_data.get("_id"),
-            "name": entity_data.get("name"),
-            "description": entity_data.get("description"),
-            "rules": entity_data.get("rules", []),
-            "enabled": entity_data.get("enabled", True),
-            "organization_id": entity_data.get("organizationId", 0),
-            "created_at": entity_data.get("createdAt"),
-            "updated_at": entity_data.get("updatedAt"),
-            "created_by": entity_data.get("createdBy"),
-            "updated_by": entity_data.get("updatedBy"),
-        }
-        # Remove None values
-        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
-        return TriageProfile(**mapped_data)
-class DeleteTriageProfileCommand(Command[Dict[str, Any]]):
-    """Command to delete a triage profile."""
-    def __init__(self, http_client: HTTPClient, profile_id: str):
-        self.http_client = http_client
-        self.profile_id = profile_id
-    def execute(self) -> Dict[str, Any]:
-        """Execute the command to delete a triage profile."""
-        response = self.http_client.delete(f"triage/profiles/{self.profile_id}")
-        return response
+"""
+Triage-related commands for the Binalyze AIR SDK.
+"""
+from typing import Dict, Any, Union
+from ..base import Command
+from ..models.triage import (
+    TriageRule, TriageTag, TriageProfile, CreateTriageRuleRequest,
+    UpdateTriageRuleRequest, CreateTriageTagRequest, CreateTriageProfileRequest
+)
+from ..http_client import HTTPClient
+class CreateTriageRuleCommand(Command[TriageRule]):
+    """Command to create a new triage rule."""
+    def __init__(self, http_client: HTTPClient, request: Union[CreateTriageRuleRequest, Dict[str, Any]]):
+        self.http_client = http_client
+        self.request = request
+    def execute(self) -> TriageRule:
+        """Execute the command to create a triage rule."""
+        # Handle both dict and model objects
+        if isinstance(self.request, dict):
+            data = self.request.copy()
+        else:
+            # Convert SDK model fields to API fields
+            request_dict = self.request.model_dump(exclude_none=True)
+            data = {
+                "description": request_dict.get("description") or request_dict.get("name", ""),
+                "rule": request_dict.get("rule_content", ""),
+                "engine": request_dict.get("type", "yara"),
+                "searchIn": request_dict.get("search_in", "filesystem"),
+                "organizationIds": [request_dict.get("organization_id", 0)]
+            }
+        response = self.http_client.post("triages/rules", json_data=data)
+        entity_data = response.get("result", {})
+        mapped_data = {
+            "id": entity_data.get("_id"),
+            "name": entity_data.get("description", ""),  # API uses description as name
+            "description": entity_data.get("description"),
+            "type": entity_data.get("engine"),  # API uses engine field
+            "rule_content": entity_data.get("rule", ""),
+            "search_in": entity_data.get("searchIn"),
+            "enabled": entity_data.get("enabled", True),
+            "severity": entity_data.get("severity", "medium"),
+            "tags": entity_data.get("tags", []),
+            "organization_id": entity_data.get("organizationIds", [0])[0] if entity_data.get("organizationIds") else 0,
+            "organization_ids": entity_data.get("organizationIds", []),
+            "created_at": entity_data.get("createdAt"),
+            "updated_at": entity_data.get("updatedAt"),
+            "created_by": entity_data.get("createdBy"),
+            "updated_by": entity_data.get("updatedBy"),
+            "match_count": entity_data.get("matchCount", 0),
+            "last_match": entity_data.get("lastMatch"),
+            "deletable": entity_data.get("deletable"),
+        }
+        # Remove None values
+        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
+        return TriageRule(**mapped_data)
+class UpdateTriageRuleCommand(Command[TriageRule]):
+    """Command to update an existing triage rule."""
+    def __init__(self, http_client: HTTPClient, rule_id: str, request: Union[UpdateTriageRuleRequest, Dict[str, Any]]):
+        self.http_client = http_client
+        self.rule_id = rule_id
+        self.request = request
+    def execute(self) -> TriageRule:
+        """Execute the command to update a triage rule."""
+        # Handle both dict and model objects
+        if isinstance(self.request, dict):
+            data = self.request.copy()
+        else:
+            # Convert SDK model fields to API fields
+            request_dict = self.request.model_dump(exclude_none=True)
+            data = {}
+            # Map SDK fields to API fields for update
+            if "description" in request_dict or "name" in request_dict:
+                data["description"] = request_dict.get("description") or request_dict.get("name", "")
+            if "rule_content" in request_dict:
+                data["rule"] = request_dict.get("rule_content")
+            if "type" in request_dict:
+                data["engine"] = request_dict.get("type")
+            if "search_in" in request_dict:
+                data["searchIn"] = request_dict.get("search_in")
+            if "organization_id" in request_dict:
+                data["organizationIds"] = [request_dict.get("organization_id")]
+            if "enabled" in request_dict:
+                data["enabled"] = request_dict.get("enabled")
+        response = self.http_client.put(f"triages/rules/{self.rule_id}", json_data=data)
+        entity_data = response.get("result", {})
+        mapped_data = {
+            "id": entity_data.get("_id"),
+            "name": entity_data.get("description", ""),  # API uses description as name
+            "description": entity_data.get("description"),
+            "type": entity_data.get("engine"),  # API uses engine field
+            "rule_content": entity_data.get("rule", ""),
+            "search_in": entity_data.get("searchIn"),
+            "enabled": entity_data.get("enabled", True),
+            "severity": entity_data.get("severity", "medium"),
+            "tags": entity_data.get("tags", []),
+            "organization_id": entity_data.get("organizationIds", [0])[0] if entity_data.get("organizationIds") else 0,
+            "organization_ids": entity_data.get("organizationIds", []),
+            "created_at": entity_data.get("createdAt"),
+            "updated_at": entity_data.get("updatedAt"),
+            "created_by": entity_data.get("createdBy"),
+            "updated_by": entity_data.get("updatedBy"),
+            "match_count": entity_data.get("matchCount", 0),
+            "last_match": entity_data.get("lastMatch"),
+            "deletable": entity_data.get("deletable"),
+        }
+        # Remove None values
+        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
+        return TriageRule(**mapped_data)
+class DeleteTriageRuleCommand(Command[Dict[str, Any]]):
+    """Command to delete a triage rule."""
+    def __init__(self, http_client: HTTPClient, rule_id: str):
+        self.http_client = http_client
+        self.rule_id = rule_id
+    def execute(self) -> Dict[str, Any]:
+        """Execute the command to delete a triage rule."""
+        response = self.http_client.delete(f"triages/rules/{self.rule_id}")
+        return response
+class EnableTriageRuleCommand(Command[TriageRule]):
+    """Command to enable a triage rule."""
+    def __init__(self, http_client: HTTPClient, rule_id: str):
+        self.http_client = http_client
+        self.rule_id = rule_id
+    def execute(self) -> TriageRule:
+        """Execute the command to enable a triage rule."""
+        data = {"enabled": True}
+        response = self.http_client.put(f"triages/rules/{self.rule_id}", json_data=data)
+        entity_data = response.get("result", {})
+        mapped_data = {
+            "id": entity_data.get("_id"),
+            "name": entity_data.get("name"),
+            "description": entity_data.get("description"),
+            "type": entity_data.get("type"),
+            "rule_content": entity_data.get("ruleContent", ""),
+            "enabled": entity_data.get("enabled", True),
+            "severity": entity_data.get("severity", "medium"),
+            "tags": entity_data.get("tags", []),
+            "organization_id": entity_data.get("organizationId", 0),
+            "created_at": entity_data.get("createdAt"),
+            "updated_at": entity_data.get("updatedAt"),
+            "created_by": entity_data.get("createdBy"),
+            "updated_by": entity_data.get("updatedBy"),
+            "match_count": entity_data.get("matchCount", 0),
+            "last_match": entity_data.get("lastMatch"),
+        }
+        # Remove None values
+        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
+        return TriageRule(**mapped_data)
+class CreateTriageTagCommand(Command[TriageTag]):
+    """Command to create a new triage tag."""
+    def __init__(self, http_client: HTTPClient, request: Union[CreateTriageTagRequest, Dict[str, Any]]):
+        self.http_client = http_client
+        self.request = request
+    def execute(self) -> TriageTag:
+        """Execute the command to create a triage tag."""
+        # Handle both dict and model objects
+        if isinstance(self.request, dict):
+            data = self.request
+        else:
+            data = self.request.model_dump(exclude_none=True, by_alias=True)
+        response = self.http_client.post("triages/tags", json_data=data)
+        entity_data = response.get("result", {})
+        mapped_data = {
+            "id": entity_data.get("id") or entity_data.get("_id"),  # Handle both id and _id
+            "name": entity_data.get("name"),
+            "description": entity_data.get("description"),
+            "color": entity_data.get("color", "#3498db"),
+            "organization_id": entity_data.get("organizationId", 0),
+            "created_at": entity_data.get("createdAt"),
+            "updated_at": entity_data.get("updatedAt"),
+            "created_by": entity_data.get("createdBy", "Unknown"),  # Provide default for required field
+            "usage_count": entity_data.get("usageCount") or entity_data.get("count", 0),  # Handle both count and usageCount
+        }
+        # Remove None values but keep defaults for required fields
+        mapped_data = {k: v for k, v in mapped_data.items() if v is not None}
+        return TriageTag(**mapped_data)

binalyze-air-sdk 1.0.2__py3-none-any.whl → 1.0.3__py3-none-any.whl

binalyze-air-sdk 1.0.2py3-none-any.whl → 1.0.3py3-none-any.whl