cartography 0.104.0rc2__py3-none-any.whl → 0.123.0__py3-none-any.whl

cartography/models/kubernetes/secrets.py

@@ -0,0 +1,79 @@
+from dataclasses import dataclass
+
+from cartography.models.core.common import PropertyRef
+from cartography.models.core.nodes import CartographyNodeProperties
+from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.core.relationships import CartographyRelProperties
+from cartography.models.core.relationships import CartographyRelSchema
+from cartography.models.core.relationships import LinkDirection
+from cartography.models.core.relationships import make_target_node_matcher
+from cartography.models.core.relationships import OtherRelationships
+from cartography.models.core.relationships import TargetNodeMatcher
+
+
+@dataclass(frozen=True)
+class KubernetesSecretNodeProperties(CartographyNodeProperties):
+    id: PropertyRef = PropertyRef("uid")
+    name: PropertyRef = PropertyRef("name", extra_index=True)
+    creation_timestamp: PropertyRef = PropertyRef("creation_timestamp")
+    deletion_timestamp: PropertyRef = PropertyRef("deletion_timestamp")
+    namespace: PropertyRef = PropertyRef("namespace", extra_index=True)
+    owner_references: PropertyRef = PropertyRef("owner_references")
+    type: PropertyRef = PropertyRef("type")
+    cluster_name: PropertyRef = PropertyRef(
+        "CLUSTER_NAME", set_in_kwargs=True, extra_index=True
+    )
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesSecretToKubernetesNamespaceRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+# (:KubernetesSecret)<-[:CONTAINS]-(:KubernetesNamespace)
+class KubernetesSecretToKubernetesNamespaceRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesNamespace"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {
+            "cluster_name": PropertyRef("CLUSTER_NAME", set_in_kwargs=True),
+            "name": PropertyRef("namespace"),
+        }
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "CONTAINS"
+    properties: KubernetesSecretToKubernetesNamespaceRelProperties = (
+        KubernetesSecretToKubernetesNamespaceRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesSecretToKubernetesClusterRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+# (:KubernetesSecret)<-[:RESOURCE]-(:KubernetesCluster)
+class KubernetesSecretToKubernetesClusterRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesCluster"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"id": PropertyRef("CLUSTER_ID", set_in_kwargs=True)}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "RESOURCE"
+    properties: KubernetesSecretToKubernetesClusterRelProperties = (
+        KubernetesSecretToKubernetesClusterRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesSecretSchema(CartographyNodeSchema):
+    label: str = "KubernetesSecret"
+    properties: KubernetesSecretNodeProperties = KubernetesSecretNodeProperties()
+    sub_resource_relationship: KubernetesSecretToKubernetesClusterRel = (
+        KubernetesSecretToKubernetesClusterRel()
+    )
+    other_relationships: OtherRelationships = OtherRelationships(
+        [KubernetesSecretToKubernetesNamespaceRel()]
+    )

cartography/models/kubernetes/serviceaccounts.py

@@ -0,0 +1,77 @@
+from dataclasses import dataclass
+
+from cartography.models.core.common import PropertyRef
+from cartography.models.core.nodes import CartographyNodeProperties
+from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.core.relationships import CartographyRelProperties
+from cartography.models.core.relationships import CartographyRelSchema
+from cartography.models.core.relationships import LinkDirection
+from cartography.models.core.relationships import make_target_node_matcher
+from cartography.models.core.relationships import OtherRelationships
+from cartography.models.core.relationships import TargetNodeMatcher
+
+
+@dataclass(frozen=True)
+class KubernetesServiceAccountNodeProperties(CartographyNodeProperties):
+    id: PropertyRef = PropertyRef("id")
+    name: PropertyRef = PropertyRef("name")
+    namespace: PropertyRef = PropertyRef("namespace")
+    uid: PropertyRef = PropertyRef("uid")
+    creation_timestamp: PropertyRef = PropertyRef("creation_timestamp")
+    resource_version: PropertyRef = PropertyRef("resource_version")
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesServiceAccountToNamespaceRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesServiceAccountToNamespaceRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesNamespace"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {
+            "cluster_name": PropertyRef("CLUSTER_NAME", set_in_kwargs=True),
+            "name": PropertyRef("namespace"),
+        }
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "CONTAINS"
+    properties: KubernetesServiceAccountToNamespaceRelProperties = (
+        KubernetesServiceAccountToNamespaceRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesServiceAccountToClusterRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesServiceAccountToClusterRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesCluster"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"id": PropertyRef("CLUSTER_ID", set_in_kwargs=True)}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "RESOURCE"
+    properties: KubernetesServiceAccountToClusterRelProperties = (
+        KubernetesServiceAccountToClusterRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesServiceAccountSchema(CartographyNodeSchema):
+    label: str = "KubernetesServiceAccount"
+    properties: KubernetesServiceAccountNodeProperties = (
+        KubernetesServiceAccountNodeProperties()
+    )
+    sub_resource_relationship: KubernetesServiceAccountToClusterRel = (
+        KubernetesServiceAccountToClusterRel()
+    )
+    other_relationships: OtherRelationships = OtherRelationships(
+        [
+            KubernetesServiceAccountToNamespaceRel(),
+        ]
+    )

cartography/models/kubernetes/services.py

@@ -0,0 +1,108 @@
+from dataclasses import dataclass
+
+from cartography.models.core.common import PropertyRef
+from cartography.models.core.nodes import CartographyNodeProperties
+from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.core.relationships import CartographyRelProperties
+from cartography.models.core.relationships import CartographyRelSchema
+from cartography.models.core.relationships import LinkDirection
+from cartography.models.core.relationships import make_target_node_matcher
+from cartography.models.core.relationships import OtherRelationships
+from cartography.models.core.relationships import TargetNodeMatcher
+
+
+@dataclass(frozen=True)
+class KubernetesServiceNodeProperties(CartographyNodeProperties):
+    id: PropertyRef = PropertyRef("uid")
+    name: PropertyRef = PropertyRef("name", extra_index=True)
+    creation_timestamp: PropertyRef = PropertyRef("creation_timestamp")
+    deletion_timestamp: PropertyRef = PropertyRef("deletion_timestamp")
+    namespace: PropertyRef = PropertyRef("namespace", extra_index=True)
+    selector: PropertyRef = PropertyRef("selector")
+    type: PropertyRef = PropertyRef("type")
+    cluster_ip: PropertyRef = PropertyRef("cluster_ip")
+    load_balancer_ip: PropertyRef = PropertyRef("load_balancer_ip")
+    load_balancer_ingress: PropertyRef = PropertyRef("load_balancer_ingress")
+    cluster_name: PropertyRef = PropertyRef(
+        "CLUSTER_NAME", set_in_kwargs=True, extra_index=True
+    )
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesServiceToKubernetesClusterRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+# (:KubernetesService)<-[:RESOURCE]-(:KubernetesCluster)
+class KubernetesServiceToKubernetesClusterRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesCluster"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"id": PropertyRef("CLUSTER_ID", set_in_kwargs=True)}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "RESOURCE"
+    properties: KubernetesServiceToKubernetesClusterRelProperties = (
+        KubernetesServiceToKubernetesClusterRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesServiceToKubernetesNamespaceRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+# (:KubernetesService)<-[:CONTAINS]-(:KubernetesNamespace)
+class KubernetesServiceToKubernetesNamespaceRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesNamespace"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {
+            "cluster_name": PropertyRef("CLUSTER_NAME", set_in_kwargs=True),
+            "name": PropertyRef("namespace"),
+        }
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "CONTAINS"
+    properties: KubernetesServiceToKubernetesNamespaceRelProperties = (
+        KubernetesServiceToKubernetesNamespaceRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesServiceToKubernetesPodRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+# (:KubernetesService)-[:TARGET]->(:KubernetesPod)
+class KubernetesServiceToKubernetesPodRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesPod"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {
+            "cluster_name": PropertyRef("CLUSTER_NAME", set_in_kwargs=True),
+            "namespace": PropertyRef("namespace"),
+            "id": PropertyRef("pod_ids", one_to_many=True),
+        }
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "TARGETS"
+    properties: KubernetesServiceToKubernetesPodRelProperties = (
+        KubernetesServiceToKubernetesPodRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesServiceSchema(CartographyNodeSchema):
+    label: str = "KubernetesService"
+    properties: KubernetesServiceNodeProperties = KubernetesServiceNodeProperties()
+    sub_resource_relationship: KubernetesServiceToKubernetesClusterRel = (
+        KubernetesServiceToKubernetesClusterRel()
+    )
+    other_relationships: OtherRelationships = OtherRelationships(
+        [
+            KubernetesServiceToKubernetesNamespaceRel(),
+            KubernetesServiceToKubernetesPodRel(),
+        ]
+    )

cartography/models/kubernetes/users.py

@@ -0,0 +1,105 @@
+from dataclasses import dataclass
+
+from cartography.models.core.common import PropertyRef
+from cartography.models.core.nodes import CartographyNodeProperties
+from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.core.relationships import CartographyRelProperties
+from cartography.models.core.relationships import CartographyRelSchema
+from cartography.models.core.relationships import LinkDirection
+from cartography.models.core.relationships import make_target_node_matcher
+from cartography.models.core.relationships import OtherRelationships
+from cartography.models.core.relationships import TargetNodeMatcher
+
+
+@dataclass(frozen=True)
+class KubernetesUserNodeProperties(CartographyNodeProperties):
+    id: PropertyRef = PropertyRef("id")
+    name: PropertyRef = PropertyRef("name")
+    cluster_name: PropertyRef = PropertyRef("cluster_name")
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesUserToClusterRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesUserToClusterRel(CartographyRelSchema):
+    target_node_label: str = "KubernetesCluster"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"id": PropertyRef("CLUSTER_ID", set_in_kwargs=True)}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "RESOURCE"
+    properties: KubernetesUserToClusterRelProperties = (
+        KubernetesUserToClusterRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesUserToOktaUserRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesUserToAWSRoleRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesUserToAWSUserRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+@dataclass(frozen=True)
+class KubernetesUserToOktaUserRel(CartographyRelSchema):
+    target_node_label: str = "OktaUser"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"email": PropertyRef("name")}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "MAPS_TO"
+    properties: KubernetesUserToOktaUserRelProperties = (
+        KubernetesUserToOktaUserRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesUserToAWSRoleRel(CartographyRelSchema):
+    target_node_label: str = "AWSRole"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"arn": PropertyRef("aws_role_arn")}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "MAPS_TO"
+    properties: KubernetesUserToAWSRoleRelProperties = (
+        KubernetesUserToAWSRoleRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesUserToAWSUserRel(CartographyRelSchema):
+    target_node_label: str = "AWSUser"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"arn": PropertyRef("aws_user_arn")}
+    )
+    direction: LinkDirection = LinkDirection.INWARD
+    rel_label: str = "MAPS_TO"
+    properties: KubernetesUserToAWSUserRelProperties = (
+        KubernetesUserToAWSUserRelProperties()
+    )
+
+
+@dataclass(frozen=True)
+class KubernetesUserSchema(CartographyNodeSchema):
+    label: str = "KubernetesUser"
+    properties: KubernetesUserNodeProperties = KubernetesUserNodeProperties()
+    sub_resource_relationship: KubernetesUserToClusterRel = KubernetesUserToClusterRel()
+    other_relationships: OtherRelationships = OtherRelationships(
+        [
+            KubernetesUserToOktaUserRel(),
+            KubernetesUserToAWSRoleRel(),
+            KubernetesUserToAWSUserRel(),
+        ]
+    )

cartography/models/lastpass/user.py

@@ -3,6 +3,7 @@ from dataclasses import dataclass
 from cartography.models.core.common import PropertyRef
 from cartography.models.core.nodes import CartographyNodeProperties
 from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.core.nodes import ExtraNodeLabels
 from cartography.models.core.relationships import CartographyRelProperties
 from cartography.models.core.relationships import CartographyRelSchema
 from cartography.models.core.relationships import LinkDirection
@@ -73,6 +74,9 @@ class LastpassTenantToUserRel(CartographyRelSchema):
 @dataclass(frozen=True)
 class LastpassUserSchema(CartographyNodeSchema):
     label: str = "LastpassUser"
+    extra_node_labels: ExtraNodeLabels = ExtraNodeLabels(
+        ["UserAccount"]
+    )  # UserAccount label is used for ontology mapping
     properties: LastpassUserNodeProperties = LastpassUserNodeProperties()
     other_relationships: OtherRelationships = OtherRelationships(
         rels=[LastpassHumanToUserRel()],

cartography/models/ontology/device.py

@@ -0,0 +1,137 @@
+from dataclasses import dataclass
+
+from cartography.models.core.common import PropertyRef
+from cartography.models.core.nodes import CartographyNodeProperties
+from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.core.nodes import ExtraNodeLabels
+from cartography.models.core.relationships import CartographyRelProperties
+from cartography.models.core.relationships import CartographyRelSchema
+from cartography.models.core.relationships import LinkDirection
+from cartography.models.core.relationships import make_target_node_matcher
+from cartography.models.core.relationships import OtherRelationships
+from cartography.models.core.relationships import TargetNodeMatcher
+
+
+@dataclass(frozen=True)
+class DeviceNodeProperties(CartographyNodeProperties):
+    id: PropertyRef = PropertyRef("hostname")
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+    hostname: PropertyRef = PropertyRef("hostname", extra_index=True)
+    os: PropertyRef = PropertyRef("os")
+    os_version: PropertyRef = PropertyRef("os_version")
+    model: PropertyRef = PropertyRef("model")
+    platform: PropertyRef = PropertyRef("platform")
+    serial_number: PropertyRef = PropertyRef("serial_number", extra_index=True)
+
+
+@dataclass(frozen=True)
+class DeviceToNodeRelProperties(CartographyRelProperties):
+    lastupdated: PropertyRef = PropertyRef("lastupdated", set_in_kwargs=True)
+
+
+# (:Device)-[:OBSERVED_AS]->(:DuoEndpoint)
+class DeviceToDuoEndpointRel(CartographyRelSchema):
+    target_node_label: str = "DuoEndpoint"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"device_name": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:DuoPhone)
+class DeviceToDuoPhoneRel(CartographyRelSchema):
+    target_node_label: str = "DuoPhone"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"name": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:KandjiDevice)
+class DeviceToKandjiDeviceRel(CartographyRelSchema):
+    target_node_label: str = "KandjiDevice"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"device_name": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:SnipeitAsset)
+class DeviceToSnipeitAssetRel(CartographyRelSchema):
+    target_node_label: str = "SnipeitAsset"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"name": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:TailscaleDevice)
+class DeviceToTailscaleDeviceRel(CartographyRelSchema):
+    target_node_label: str = "TailscaleDevice"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"hostname": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:CrowdstrikeHost)
+class DeviceToCrowdstrikeHostRel(CartographyRelSchema):
+    target_node_label: str = "CrowdstrikeHost"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"hostname": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:BigfixComputer)
+class DeviceToBigfixComputerRel(CartographyRelSchema):
+    target_node_label: str = "BigfixComputer"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"computername": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+# (:Device)-[:OBSERVED_AS]->(:GoogleWorkspaceDevice)
+class DeviceToGoogleWorkspaceDeviceRel(CartographyRelSchema):
+    target_node_label: str = "GoogleWorkspaceDevice"
+    target_node_matcher: TargetNodeMatcher = make_target_node_matcher(
+        {"hostname": PropertyRef("hostname")},
+    )
+    direction: LinkDirection = LinkDirection.OUTWARD
+    rel_label: str = "OBSERVED_AS"
+    properties: DeviceToNodeRelProperties = DeviceToNodeRelProperties()
+
+
+@dataclass(frozen=True)
+class DeviceSchema(CartographyNodeSchema):
+    label: str = "Device"
+    extra_node_labels: ExtraNodeLabels = ExtraNodeLabels(["Ontology"])
+    properties: DeviceNodeProperties = DeviceNodeProperties()
+    scoped_cleanup: bool = False
+    other_relationships: OtherRelationships = OtherRelationships(
+        rels=[
+            DeviceToDuoEndpointRel(),
+            DeviceToDuoPhoneRel(),
+            DeviceToKandjiDeviceRel(),
+            DeviceToSnipeitAssetRel(),
+            DeviceToTailscaleDeviceRel(),
+            DeviceToCrowdstrikeHostRel(),
+            DeviceToBigfixComputerRel(),
+            DeviceToGoogleWorkspaceDeviceRel(),
+        ],
+    )

cartography/models/ontology/mapping/__init__.py

@@ -0,0 +1,76 @@
+import logging
+
+from cartography.models.core.nodes import CartographyNodeSchema
+from cartography.models.ontology.device import DeviceSchema
+from cartography.models.ontology.mapping.data.apikeys import APIKEYS_ONTOLOGY_MAPPING
+from cartography.models.ontology.mapping.data.computeinstance import (
+    COMPUTE_INSTANCE_ONTOLOGY_MAPPING,
+)
+from cartography.models.ontology.mapping.data.containers import (
+    CONTAINER_ONTOLOGY_MAPPING,
+)
+from cartography.models.ontology.mapping.data.databases import (
+    DATABASES_ONTOLOGY_MAPPING,
+)
+from cartography.models.ontology.mapping.data.devices import DEVICES_ONTOLOGY_MAPPING
+from cartography.models.ontology.mapping.data.thirdpartyapps import (
+    THIRDPARTYAPPS_ONTOLOGY_MAPPING,
+)
+from cartography.models.ontology.mapping.data.useraccounts import (
+    USERACCOUNTS_ONTOLOGY_MAPPING,
+)
+from cartography.models.ontology.mapping.data.users import USERS_ONTOLOGY_MAPPING
+from cartography.models.ontology.mapping.specs import OntologyMapping
+from cartography.models.ontology.mapping.specs import OntologyNodeMapping
+from cartography.models.ontology.user import UserSchema
+
+logger = logging.getLogger(__name__)
+
+
+# Following mapping are used to create ontology nodes and relationships from module nodes
+# They are leveraged in the ontology module to perform the actual mapping
+ONTOLOGY_NODES_MAPPING: dict[str, dict[str, OntologyMapping]] = {
+    "users": USERS_ONTOLOGY_MAPPING,
+    "devices": DEVICES_ONTOLOGY_MAPPING,
+}
+
+# Following mapping are used to normalize fields for semantic labels
+# They are leveraged directly by the load functions of each module at ingestion time
+SEMANTIC_LABELS_MAPPING: dict[str, dict[str, OntologyMapping]] = {
+    "useraccounts": USERACCOUNTS_ONTOLOGY_MAPPING,
+    "apikeys": APIKEYS_ONTOLOGY_MAPPING,
+    "computeinstance": COMPUTE_INSTANCE_ONTOLOGY_MAPPING,
+    "containers": CONTAINER_ONTOLOGY_MAPPING,
+    "databases": DATABASES_ONTOLOGY_MAPPING,
+    "thirdpartyapps": THIRDPARTYAPPS_ONTOLOGY_MAPPING,
+}
+
+ONTOLOGY_MODELS: dict[str, type[CartographyNodeSchema] | None] = {
+    "users": UserSchema,
+    "devices": DeviceSchema,
+}
+
+
+def get_semantic_label_mapping_from_node_schema(
+    node_schema: CartographyNodeSchema,
+) -> OntologyNodeMapping | None:
+    """Retrieve the OntologyNodeMapping for a given CartographyNodeSchema.
+
+    Args:
+        node_schema: An instance of CartographyNodeSchema representing the node.
+
+    Returns:
+        The corresponding OntologyNodeMapping if found, else None.
+    """
+    for module_name, module_mappings in SEMANTIC_LABELS_MAPPING.items():
+        if module_name == "ontology":
+            continue
+        for ontology_mapping in module_mappings.values():
+            for mapping_node in ontology_mapping.nodes:
+                if mapping_node.node_label == node_schema.label:
+                    logging.debug(
+                        "Found semantic label mapping for node label: %s",
+                        mapping_node.node_label,
+                    )
+                    return mapping_node
+    return None