boman-cli 2.4.4__tar.gz → 2.4.6__tar.gz

{boman_cli-2.4.4 → boman-cli-2.4.6}/PKG-INFO

@@ -1,22 +1,17 @@
 Metadata-Version: 2.1
 Name: boman-cli
-Version: 2.4.4
+Version: 2.4.6
 Summary: CLI tool of boman.ai
 Home-page: https://boman.ai
 Author: Sumeru Software Solutions Pvt. Ltd.
 Author-email: support@boman.ai
 License: BSD 2-clause
+Platform: UNKNOWN
 Classifier: Development Status :: 5 - Production/Stable
 Classifier: Intended Audience :: Developers
 Classifier: License :: OSI Approved :: BSD License
 Classifier: Operating System :: OS Independent
 Description-Content-Type: text/markdown
-Requires-Dist: docker<=7.0.0
-Requires-Dist: requests<=2.31.0
-Requires-Dist: pyyaml
-Requires-Dist: coloredlogs<=15.0.1
-Requires-Dist: xmltodict<=0.13.0
-Requires-Dist: pyfiglet<=1.0.2
 
 # Introduction 
 Boman CLI is a Orchestration script written in python to run security scans on the local or CI/CD environment and upload the results to Boman.ai SaaS server.
@@ -80,6 +75,13 @@ Example: boman-cli -a run -config ./customboman.yaml
 Example: boman-cli -a run -zap_session_script ./session.js
 
 
+### To pass semgrep api token, pass it with -semgrep_token
+
+`boman-cli -a run -semgrep_token <value>`
+
+
+
+
 # Error codes
 
 0  : Successfull scan
@@ -93,6 +95,13 @@ Example: boman-cli -a run -zap_session_script ./session.js
 
 ### Release Note:
 
+
+### V2.4.6
+- **New:** Semgrep API integration. Pass the semgrpe token as -semgrep_token {value}.
+
+### V2.4.5
+- **New:** Snyk API integration. Navigate to **Integrations -> Snyk** in the Boman SaaS to setup Snyk.
+
 ### V2.4.4
 - Minor bug fix + V2.4.3
 
@@ -154,3 +163,5 @@ Released on: 21 May 2024
 
 
 
+
+

{boman_cli-2.4.4 → boman-cli-2.4.6}/README.md

@@ -60,6 +60,13 @@ Example: boman-cli -a run -config ./customboman.yaml
 Example: boman-cli -a run -zap_session_script ./session.js
 
 
+### To pass semgrep api token, pass it with -semgrep_token
+
+`boman-cli -a run -semgrep_token <value>`
+
+
+
+
 # Error codes
 
 0  : Successfull scan
@@ -73,6 +80,13 @@ Example: boman-cli -a run -zap_session_script ./session.js
 
 ### Release Note:
 
+
+### V2.4.6
+- **New:** Semgrep API integration. Pass the semgrpe token as -semgrep_token {value}.
+
+### V2.4.5
+- **New:** Snyk API integration. Navigate to **Integrations -> Snyk** in the Boman SaaS to setup Snyk.
+
 ### V2.4.4
 - Minor bug fix + V2.4.3
 

{boman_cli-2.4.4 → boman-cli-2.4.6}/boman_cli.egg-info/PKG-INFO

@@ -1,22 +1,17 @@
 Metadata-Version: 2.1
 Name: boman-cli
-Version: 2.4.4
+Version: 2.4.6
 Summary: CLI tool of boman.ai
 Home-page: https://boman.ai
 Author: Sumeru Software Solutions Pvt. Ltd.
 Author-email: support@boman.ai
 License: BSD 2-clause
+Platform: UNKNOWN
 Classifier: Development Status :: 5 - Production/Stable
 Classifier: Intended Audience :: Developers
 Classifier: License :: OSI Approved :: BSD License
 Classifier: Operating System :: OS Independent
 Description-Content-Type: text/markdown
-Requires-Dist: docker<=7.0.0
-Requires-Dist: requests<=2.31.0
-Requires-Dist: pyyaml
-Requires-Dist: coloredlogs<=15.0.1
-Requires-Dist: xmltodict<=0.13.0
-Requires-Dist: pyfiglet<=1.0.2
 
 # Introduction 
 Boman CLI is a Orchestration script written in python to run security scans on the local or CI/CD environment and upload the results to Boman.ai SaaS server.
@@ -80,6 +75,13 @@ Example: boman-cli -a run -config ./customboman.yaml
 Example: boman-cli -a run -zap_session_script ./session.js
 
 
+### To pass semgrep api token, pass it with -semgrep_token
+
+`boman-cli -a run -semgrep_token <value>`
+
+
+
+
 # Error codes
 
 0  : Successfull scan
@@ -93,6 +95,13 @@ Example: boman-cli -a run -zap_session_script ./session.js
 
 ### Release Note:
 
+
+### V2.4.6
+- **New:** Semgrep API integration. Pass the semgrpe token as -semgrep_token {value}.
+
+### V2.4.5
+- **New:** Snyk API integration. Navigate to **Integrations -> Snyk** in the Boman SaaS to setup Snyk.
+
 ### V2.4.4
 - Minor bug fix + V2.4.3
 
@@ -154,3 +163,5 @@ Released on: 21 May 2024
 
 
 
+
+

{boman_cli-2.4.4 → boman-cli-2.4.6}/boman_cli.egg-info/entry_points.txt

@@ -1,2 +1,3 @@
 [console_scripts]
 boman-cli = bomancli.main:default
+

{boman_cli-2.4.4 → boman-cli-2.4.6}/bomancli/Config.py

@@ -120,7 +120,7 @@ class Config:
 
     log_level = "INFO"
 
-    version = 'v2.4.4'
+    version = 'v2.4.6'
 
     boman_config_file = 'boman.yaml'
     
@@ -187,6 +187,6 @@ class Config:
     con_scan_configuration = None
     sbom_configuration = None
     iac_scan_configuration = None
-
+    semgrep_token = None
 
     dast_adv_auth_enabled = None

{boman_cli-2.4.4 → boman-cli-2.4.6}/bomancli/auth.py

@@ -138,7 +138,7 @@ def authorize():
         logging.info("Authorization: Communicating with SaaS for Authorization")
         res = requests.post(url, json=data, headers=headers)
         #print('req:', json.dumps(data))
-        logging.info('res: %s',json.loads(res.content))
+        # logging.info('res: %s',json.loads(res.content))
     except requests.ConnectionError:
        logging.error("Authorization: Failed!!! Message: Can't connect to the Server while authorizing, Please check your Internet connection.")
        exit(1) #server/saas error

{boman_cli-2.4.4 → boman-cli-2.4.6}/bomancli/main.py

@@ -36,7 +36,7 @@ parser = argparse.ArgumentParser(
 	description='''
 	#This is a CLI tool to communicate with Boman.ai SaaS server
 	''',
-	epilog='copyright (c) 2024 SUMERU'
+	epilog='copyright (c) 2025 SUMERU'
 	)
 
 
@@ -115,9 +115,13 @@ def runImage(data=None,type=None):
         # logging.info('environment var configured for the scan is not picked up by the cli')
         env = data['env']
         env_var =  env.split(',')
-        logging.info('Docker Run: environment var configured for the scan is %s',str(env_var))
+        logging.info('Docker Run: environment var configured for the scan is %s',Utils.masker(str(env_var)))
     except:
         env_var = ['test=test']
+        if Config.semgrep_token != None:
+            env_var.append(Config.semgrep_token)
+            logging.info('Docker Run: environment var configured for semgrep is is %s',Utils.masker(str(env_var)))
+
         logging.warning("Docker Run: environment var configuration failed or can't find the variables from sass")
 
 
@@ -130,8 +134,10 @@ def runImage(data=None,type=None):
                 logging.error("SAST Configuration: Failed!!!. EXIT CODE:4(MISCONFIGURATION). Message: .bomanignore file was not found. Please check if you have '.bomanignore' file in the repository(Main Directory). As you have configured ignore files and folder")
                 exit(4)
         target_file = Config.sast_target
+        docker_image = "semgrep/semgrep:latest"
         Utils.checkImageAlreadyExsist(docker_image)
         
+        
         if (Config.sast_target is not None) and (Config.sast_target != "" ):
             Config.sast_build_dir = os.path.join(Config.sast_build_dir,Utils.remove_leading_slash(Config.sast_target)) 
 
@@ -571,30 +577,6 @@ def runImage(data=None,type=None):
 #### function to upload the test report to the server with other data -- MM ------------------------------------
 def uploadReport(filename,toolname,tool_id,scan_details_id,type):
     
-    # if toolname.lower() == 'sonarcloud':
-    #     message = Config.sast_message
-    #     errors = Config.sast_errors
-    #     values = {'tool_name': toolname, 'time': time.time(),'scan_token':Config.scan_token, 'app_token':Config.app_token,'customer_token':Config.customer_token,'tool_id':tool_id,'scan_details_id':scan_details_id,"tool_results":None,"message":message,"errors":errors,"app_loc":Config.app_loc}
-    #     logging.info(values)
-    #     url = Config.boman_url+"/api/app/upload" 
-    #     # with open(path) as f: 
-    #     #     file_obj = f
-    #     r = requests.post(url,json=values)
-    #     #print(r.status_code)
-    #     if r.status_code == 200:
-    #         logging.info('[COMPLETED]: %s Report uploaded Successfully! Report Name: %s',toolname,filename)
-    #         logging.info('Removing the result file')
-    #         os.remove(path)
-    #         return 1
-    #     elif r.status_code == 401 :
-    #         logging.error('Unauthorized Access while uploading the results. Please check the app/customer tokens')
-    #         exit(2)  ## Auth error
-    #     else:
-    #         logging.error('Problem While uploading the results.')
-    #         logging.error('response code is %s',r.status_code)
-    #         return 0
-        
-
     logging.info('Uploading %s report with filename: %s', toolname,filename)
     if True:
         #build_dir = '/home/boxuser/box/trainingdata/repos/youtube-dl/'
@@ -674,7 +656,7 @@ def uploadReport(filename,toolname,tool_id,scan_details_id,type):
         if r.status_code == 200:
             logging.info('[COMPLETED]: %s Report uploaded Successfully! Report Name: %s',toolname,filename)
             logging.info('Removing the result file')
-            os.remove(path)
+            #os.remove(path)
             return 1
         elif r.status_code == 401 :
             logging.error('Unauthorized Access while uploading the results. Please check the app/customer tokens')
@@ -709,7 +691,7 @@ def initSecertScan(path,data):
 
 
     try:
-        logging.info('Running Secert Scanning on the repository')
+        logging.info('Running Secret Scanning on the repository')
         container = Config.docker_client.containers.run(image_name, command_line_truffle, detach=True,volumes={build_dir: {
                     'bind': bind_dir}})
         op = []
@@ -728,9 +710,11 @@ def initSecertScan(path,data):
                 break
 
 
-        logging.info('[SUCCESS]: Secert Scanning Completed ')
+        logging.info('[SUCCESS]: Secret Scanning Completed ')
     except errors.ContainerError as exc:
         Config.secret_scan_errors = str(exc)
+        Config.secret_scan_status ='Failed'
+        Config.secret_scan_message ='Error recorded while scanning Secret Scan'
         logging.error('Error Occured while running Trufflehog on the repository')
         logging.error('%s',str(exc))
         msg='\n The following error has been recorded while scanning Trufflehog'
@@ -880,14 +864,6 @@ def main():
             logging.warning('SAST: Configured with Sonar it will run on SaaS')
             Config.sast_scan_status = 'SUCCESS'
             Config.sast_message = f'SAST Scan: Success. Sonar is configured and will run on SaaS'
-            # data = Config.sast_response[0]
-            # tool_name =data['tool']
-            # output_file= data['output_file']
-            # tool_id= data['tool_id']
-            # scan_details_id= data['scan_details_id']
-            # if uploadReport(output_file,tool_name,tool_id,scan_details_id,'SAST'):
-            #     Config.sast_upload_status ='SuCCESS'
-                
                 
 
     else:
@@ -919,21 +895,26 @@ def main():
 
     else:
         logging.info('DAST: Ignoring scan. Message: Not Configured')
+        
 
-
+    
     if Config.sca_present is True:
-        logging.info('SCA: Preparing scan')
-
-        
-        for data in Config.sca_response:
+        if Config.sca_response[0]['tool'] != "SNYK":    
+            logging.info('SCA: Preparing scan')
 
-            if data['scan_status'] == 2 :   
-                logging.info('SCA: No Configuration found from SaaS')    
-                logging.info('SCA: Ignoring Scan')
-            else: 
-                runImage(data=data,type='SCA')
-                logging.info("SCA: Successfull !!!")
             
+            for data in Config.sca_response:
+
+                if data['scan_status'] == 2 :   
+                    logging.info('SCA: No Configuration found from SaaS')    
+                    logging.info('SCA: Ignoring Scan')
+                else: 
+                    runImage(data=data,type='SCA')
+                    logging.info("SCA: Successfull !!!")
+        else:
+            logging.warning('SCA: Configured with SNYK it will run on SaaS')
+            Config.sca_scan_status = 'SUCCESS'
+            Config.sca_message = f'SCA Scan: Success. SNYK is configured and will run on SaaS'        
     else:
         logging.info('SCA: Ignoring scan. Message: Not Configured')
         
@@ -947,26 +928,39 @@ def main():
                 
         else:
             logging.error('Secret Scan: Failed !!!. Message: The Directory is not Git directory %s',Config.sast_build_dir)
+            data=Config.secret_scan_response
+            tool_name = data[0]['tool']
+            file_name = data[0]['output_file']
+            tool_id = data[0]['tool_id']
+            scan_details_id = data[0]['scan_details_id']
+            uploadReport(file_name,tool_name,tool_id,scan_details_id,'SS')
             Config.secret_scan_status = 'Failed'
             Config.secret_scan_upload_status ='NA'
+            Config.secret_scan_errors = "Secret Scan: Failed !!!. Message: The Directory is not Git directory %s"
             Config.secret_scan_message = f'Secret Scan: Failed. The Directory is not Git directory {Config.sast_build_dir}'
             logging.warning('Secret Scan: Ignoring scan')
     else:
         logging.warning('Secret Scan: Ignoring scan. Message: Not Configured')
         
+    
     if Config.con_scan_present is True:
-        logging.info("Container Scan: Preparing scan")
-        
-        for data in Config.con_scan_response:
+        if Config.con_scan_response[0]['tool'] != "SNYK":
+            logging.info("Container Scan: Preparing scan")
+            
+            for data in Config.con_scan_response:
 
-            if data['scan_status'] == 2 :   
-                logging.info('Container Scan: No Configuration found from SaaS')    
-                logging.warning('Container Scan: Ignoring Scan')
-            else:
-                runImage(data=data,type='container_scan')
+                if data['scan_status'] == 2 :   
+                    logging.info('Container Scan: No Configuration found from SaaS')    
+                    logging.warning('Container Scan: Ignoring Scan')
+                else:
+                    runImage(data=data,type='container_scan')
+        else:
+            logging.warning('Container Scan: Configured with SNYK it will run on SaaS')
+            Config.con_scan_status = 'SUCCESS'
+            Config.con_scan_message = f'Container Scan: Success. SNYK is configured and will run on SaaS'
     else:
         logging.warning('Container Scan: Ignoring scan. Message: Not Configured')
-        
+            
     if Config.sbom_present is True:
         logging.info("SBOM: Preparing requirements")
         
@@ -980,16 +974,22 @@ def main():
     else:
         logging.warning('SBOM: Ignoring. Message: Not Configured')
         
-    if Config.iac_scan_present is True:
-        logging.info("IaC: Preparing Scan")
         
-        for data in Config.iac_scan_response:
+    if Config.iac_scan_present is True:    
+        if Config.iac_scan_response[0]['tool'] != "SNYK":
+            logging.info("IaC: Preparing Scan")
+            
+            for data in Config.iac_scan_response:
 
-            if data['scan_status'] == 2 :   
-                logging.info('IaC: No Configuration found from SaaS')    
-                logging.warning('IaC: Ignoring Scan')
-            else:
-                runImage(data=data,type='iac')
+                if data['scan_status'] == 2 :   
+                    logging.info('IaC: No Configuration found from SaaS')    
+                    logging.warning('IaC: Ignoring Scan')
+                else:
+                    runImage(data=data,type='iac')
+        else:
+            logging.warning('IaC: Configured with SNYK it will run on SaaS')
+            Config.iac_scan_status = 'SUCCESS'
+            Config.iac_scan_message = f'IaC Scan: Success. SNYK is configured and will run on SaaS'
     else:
         logging.warning('IaC: Ignoring scan. Message: Not Configured')
     
@@ -1012,6 +1012,7 @@ def default():
     parser.add_argument('-zap_plan','--zap_custom_plan',default='boman_zap_auth_plan.yaml',help="Pass the file name if you have any custom zap context plan. eg:custom-zap-plan.yaml")
     parser.add_argument('-zap_session_script','--zap_custom_session_script',default='session_management.js',help="Pass the file name if you have any custom zap session script file name. eg:custom-script.js")
     # parser.add_argument('-uid','--user_id',default='1000:1000',help="[internal] Pass the custom userid:groupid incase the lingu detec function is failed")
+    parser.add_argument('-semgrep_token','--semgrepToken',default='No',help="Pass the semgrep community token here")
     args = parser.parse_args()
 
     # if len(sys.args) == 1:
@@ -1034,6 +1035,16 @@ def default():
         ###logging.info('jenkins is not choosen')
         Config.jenkins = 'no'  
 
+    # lingu user id set
+    if args.semgrepToken == 'No':
+        ##logging.info('jenkins is choosen')
+        Config.semgrep_token = None
+    else:
+        ###logging.info('jenkins is not choosen')
+        Config.semgrep_token = args.semgrepToken  
+
+
+
     ## lingu user id set
     # if args.user_id == '1000:1000':
     #     ##logging.info('jenkins is choosen')

{boman_cli-2.4.4 → boman-cli-2.4.6}/bomancli/templates/template_plan.yaml

@@ -1,139 +1,139 @@
----
-env:
-  contexts:
-    - name: "Boman Authenticated Scan"
-      urls:
-        - "https://demo.testfire.net/"
-      authentication:
-        method: "form"
-        parameters: # May include any required for scripts. All of the parameters support vars except for the port
-          loginPageUrl: "https://demo.testfire.net/login.jsp"
-          loginRequestUrl: "https://demo.testfire.net/doLogin"
-          loginRequestBody: "uid={%username%}&passw={%password%}&btnSubmit=Login"
-        verification:
-          method: "both" # String, one of 'response', 'request', 'both', 'poll'
-          loggedOutRegex: ".*Sign In.*" # String, regex pattern for determining if logged
-      sessionManagement:
-        method: ""
-        parameters:
-          script: ""
-          scriptEngine: ""
-      users: # List of one or more users available to use for authentication
-        - name: "demoadmin" # String, the name to be used by the jobs
-          credentials: # List of user credentials - may include any required for scripts
-            username: "admin" # String, the username to use when authenticating, vars supported
-            password: "admin"
-      includePaths: []
-      excludePaths: []
-      technology:
-        exclude:
-          - "C"
-          - "ASP"
-          - "IBM DB2"
-          - "PHP"
-          - "CouchDB"
-          - "XML"
-          - "Microsoft SQL Server"
-          - "JSP/Servlet"
-          - "Firebird"
-          - "MongoDB"
-          - "HypersonicSQL"
-          - "SAP MaxDB"
-          - "Ruby"
-          - "SCM"
-          - "WS"
-          - "Microsoft Access"
-          - "Sybase"
-          - "Python"
-  parameters:
-    failOnError: true
-    failOnWarning: false
-    progressToStdout: true
-  vars: {}
-jobs:
-  - parameters:
-      scanOnlyInScope: true
-      enableTags: false
-      disableAllRules: false
-    rules: []
-    name: "passiveScan-config"
-    type: "passiveScan-config"
-  - parameters:
-      context: "Demo testfire"
-      user: "demoadmin"
-      url: "https://demo.testfire.net"
-      maxDuration: 1
-      maxDepth: 2
-      maxChildren: 0
-    name: "spider"
-    type: "spider"
-    tests:
-      - onFail: "INFO"
-        statistic: "automation.spider.urls.added"
-        site: ""
-        operator: ">="
-        value: 100
-        name: "At least 100 URLs found"
-        type: "stats"
-      - name: "spider logged in" # Name of the test, optional
-        type: stats # Specifies that the test is of type 'stats'
-        statistic: "stats.auth.success" # Name of an integer / long statistic
-        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
-        value: 2 # Value to compare statistic against
-        onFail: "info"
-      - name: "spider failed" # Name of the test, optional
-        type: stats # Specifies that the test is of type 'stats'
-        statistic: "stats.auth.failure" # Name of an integer / long statisti
-        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
-        value: 2 # Value to compare statistic against
-        onFail: "info"
-  - parameters: {}
-    name: "passiveScan-wait"
-    type: "passiveScan-wait"
-  - parameters:
-      context: "Demo testfire"
-      user: "demoadmin"
-      policy: ""
-      maxRuleDurationInMins: 0
-      maxScanDurationInMins: 5
-      maxAlertsPerRule: 0
-    policyDefinition:
-      defaultStrength: "medium"
-      defaultThreshold: "medium"
-      rules: []
-    tests:
-      - name: "spider logged in" # Name of the test, optional
-        type: stats # Specifies that the test is of type 'stats'
-        statistic: "stats.auth.success" # Name of an integer / long statistic
-        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
-        value: 2 # Value to compare statistic against
-        onFail: "info"
-      - name: "spider failed" # Name of the test, optional
-        type: stats # Specifies that the test is of type 'stats'
-        statistic: "stats.auth.failure" # Name of an integer / long statisti
-        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
-        value: 2 # Value to compare statistic against
-        onFail: "info"
-    name: "activeScan"
-    type: "activeScan"
-  - parameters:
-      template: "traditional-json"
-      reportDir: ""
-      reportFile: ""
-      reportTitle: "Boman_Scanning_Report"
-      reportDescription: ""
-      displayReport: false
-    risks:
-      - "info"
-      - "low"
-      - "medium"
-      - "high"
-    confidences:
-      - "falsepositive"
-      - "low"
-      - "medium"
-      - "high"
-      - "confirmed"
-    sites: []
-    name: "report"
-    type: "report"
+---
+env:
+  contexts:
+    - name: "Boman Authenticated Scan"
+      urls:
+        - "https://demo.testfire.net/"
+      authentication:
+        method: "form"
+        parameters: # May include any required for scripts. All of the parameters support vars except for the port
+          loginPageUrl: "https://demo.testfire.net/login.jsp"
+          loginRequestUrl: "https://demo.testfire.net/doLogin"
+          loginRequestBody: "uid={%username%}&passw={%password%}&btnSubmit=Login"
+        verification:
+          method: "both" # String, one of 'response', 'request', 'both', 'poll'
+          loggedOutRegex: ".*Sign In.*" # String, regex pattern for determining if logged
+      sessionManagement:
+        method: ""
+        parameters:
+          script: ""
+          scriptEngine: ""
+      users: # List of one or more users available to use for authentication
+        - name: "demoadmin" # String, the name to be used by the jobs
+          credentials: # List of user credentials - may include any required for scripts
+            username: "admin" # String, the username to use when authenticating, vars supported
+            password: "admin"
+      includePaths: []
+      excludePaths: []
+      technology:
+        exclude:
+          - "C"
+          - "ASP"
+          - "IBM DB2"
+          - "PHP"
+          - "CouchDB"
+          - "XML"
+          - "Microsoft SQL Server"
+          - "JSP/Servlet"
+          - "Firebird"
+          - "MongoDB"
+          - "HypersonicSQL"
+          - "SAP MaxDB"
+          - "Ruby"
+          - "SCM"
+          - "WS"
+          - "Microsoft Access"
+          - "Sybase"
+          - "Python"
+  parameters:
+    failOnError: true
+    failOnWarning: false
+    progressToStdout: true
+  vars: {}
+jobs:
+  - parameters:
+      scanOnlyInScope: true
+      enableTags: false
+      disableAllRules: false
+    rules: []
+    name: "passiveScan-config"
+    type: "passiveScan-config"
+  - parameters:
+      context: "Demo testfire"
+      user: "demoadmin"
+      url: "https://demo.testfire.net"
+      maxDuration: 1
+      maxDepth: 2
+      maxChildren: 0
+    name: "spider"
+    type: "spider"
+    tests:
+      - onFail: "INFO"
+        statistic: "automation.spider.urls.added"
+        site: ""
+        operator: ">="
+        value: 100
+        name: "At least 100 URLs found"
+        type: "stats"
+      - name: "spider logged in" # Name of the test, optional
+        type: stats # Specifies that the test is of type 'stats'
+        statistic: "stats.auth.success" # Name of an integer / long statistic
+        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
+        value: 2 # Value to compare statistic against
+        onFail: "info"
+      - name: "spider failed" # Name of the test, optional
+        type: stats # Specifies that the test is of type 'stats'
+        statistic: "stats.auth.failure" # Name of an integer / long statisti
+        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
+        value: 2 # Value to compare statistic against
+        onFail: "info"
+  - parameters: {}
+    name: "passiveScan-wait"
+    type: "passiveScan-wait"
+  - parameters:
+      context: "Demo testfire"
+      user: "demoadmin"
+      policy: ""
+      maxRuleDurationInMins: 0
+      maxScanDurationInMins: 5
+      maxAlertsPerRule: 0
+    policyDefinition:
+      defaultStrength: "medium"
+      defaultThreshold: "medium"
+      rules: []
+    tests:
+      - name: "spider logged in" # Name of the test, optional
+        type: stats # Specifies that the test is of type 'stats'
+        statistic: "stats.auth.success" # Name of an integer / long statistic
+        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
+        value: 2 # Value to compare statistic against
+        onFail: "info"
+      - name: "spider failed" # Name of the test, optional
+        type: stats # Specifies that the test is of type 'stats'
+        statistic: "stats.auth.failure" # Name of an integer / long statisti
+        operator: ">=" # One of '==', '!=', '>=', '>', '<', '<='
+        value: 2 # Value to compare statistic against
+        onFail: "info"
+    name: "activeScan"
+    type: "activeScan"
+  - parameters:
+      template: "traditional-json"
+      reportDir: ""
+      reportFile: ""
+      reportTitle: "Boman_Scanning_Report"
+      reportDescription: ""
+      displayReport: false
+    risks:
+      - "info"
+      - "low"
+      - "medium"
+      - "high"
+    confidences:
+      - "falsepositive"
+      - "low"
+      - "medium"
+      - "high"
+      - "confirmed"
+    sites: []
+    name: "report"
+    type: "report"

{boman_cli-2.4.4 → boman-cli-2.4.6}/bomancli/validation.py

@@ -483,7 +483,12 @@ def tool_configuration_validation():
         
     try:
         if Config.sca_present:
-            Config.sca_message = 'SCA is properly configured'
+            if Config.sca_response[0]['tool'] != "SNYK":
+                Config.sca_message = 'SCA is properly configured'
+            else:
+                Config.sca_lang = "snyk"
+                logging.warning('Tool Config: SCA was properly configured on SaaS. It will be running SNYK from SaaS')
+
         else:
             Config.sca_message = 'SCA was not properly configured on SaaS'
             logging.warning('Tool Config: SCA was not properly configured on SaaS')
@@ -505,8 +510,12 @@ def tool_configuration_validation():
         
     try:
         if Config.iac_scan_present:
-            Config.iac_scan_message = 'IaC scan is properly configured'
-            Config.iac_scan_target = Config.iac_scan_configuration['target']
+            if Config.iac_scan_response[0]['tool'] != "SNYK":
+                Config.iac_scan_message = 'IaC scan is properly configured'
+                Config.iac_scan_target = Config.iac_scan_configuration['target']
+            else:
+                logging.warning('Tool Config: IaC was properly configured on SaaS. It will be running SNYK from SaaS')
+
         else:
             Config.iac_scan_message = 'IaC scan  was not properly configured on SaaS'
             logging.warning('Tool Config: IaC scan  was not properly configured on SaaS')
@@ -517,9 +526,12 @@ def tool_configuration_validation():
         
     try:
         if Config.con_scan_present:
-            Config.con_scan_message = 'Container Scan is properly configured'
-            Config.con_scan_type = Config.con_scan_configuration['type'].lower()
-            Config.con_scan_target = Config.con_scan_configuration['target']
+            if Config.con_scan_response[0]['tool'] != "SNYK":
+                Config.con_scan_message = 'Container Scan is properly configured'
+                Config.con_scan_type = Config.con_scan_configuration['type'].lower()
+                Config.con_scan_target = Config.con_scan_configuration['target']
+            else:
+                logging.warning('Tool Config: Container Scan was properly configured on SaaS. It will be running SNYK from SaaS')
         else:
             Config.con_scan_message = 'Container Scan was not properly configured on SaaS'
             logging.warning('Tool Config: Container Scan was not properly configured on SaaS')

{boman_cli-2.4.4 → boman-cli-2.4.6}/setup.cfg

@@ -1,9 +1,8 @@
 [metadata]
 environment = prod
-version = 2.4.4
+version = 2.4.6
 name = boman-cli
-saas_base_url = 
-https = //dashboard.boman.ai/
+saas_base_url = https://dashboard.boman.ai/
 
 [egg_info]
 tag_build = 

{boman_cli-2.4.4 → boman-cli-2.4.6}/boman_cli.egg-info/requires.txt

@@ -1,6 +1,6 @@
+coloredlogs<=15.0.1
 docker<=7.0.0
-requests<=2.31.0
+pyfiglet<=1.0.2
 pyyaml
-coloredlogs<=15.0.1
+requests<=2.31.0
 xmltodict<=0.13.0
-pyfiglet<=1.0.2