PyPI - cartography - Versions diffs - 0.114.0__py3-none-any.whl → 0.116.0__py3-none-any.whl - Mend

cartography 0.114.0py3-none-any.whl → 0.116.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of cartography might be problematic. Click here for more details.

Files changed (58) hide show

cartography/_version.py +2 -2
cartography/cli.py +2 -2
cartography/client/core/tx.py +12 -1
cartography/intel/aws/config.py +7 -3
cartography/intel/aws/ecr.py +9 -9
cartography/intel/aws/ecr_image_layers.py +664 -0
cartography/intel/aws/identitycenter.py +240 -13
cartography/intel/aws/lambda_function.py +69 -2
cartography/intel/aws/organizations.py +3 -1
cartography/intel/aws/permission_relationships.py +3 -1
cartography/intel/aws/redshift.py +9 -4
cartography/intel/aws/resources.py +2 -0
cartography/intel/aws/route53.py +53 -3
cartography/intel/aws/securityhub.py +3 -1
cartography/intel/azure/__init__.py +16 -0
cartography/intel/azure/logic_apps.py +101 -0
cartography/intel/azure/resource_groups.py +82 -0
cartography/intel/create_indexes.py +2 -1
cartography/intel/dns.py +5 -2
cartography/intel/gcp/dns.py +2 -1
cartography/intel/github/repos.py +3 -6
cartography/intel/gsuite/api.py +17 -4
cartography/intel/okta/applications.py +9 -4
cartography/intel/okta/awssaml.py +5 -2
cartography/intel/okta/factors.py +3 -1
cartography/intel/okta/groups.py +5 -2
cartography/intel/okta/organization.py +3 -1
cartography/intel/okta/origins.py +3 -1
cartography/intel/okta/roles.py +5 -2
cartography/intel/okta/users.py +3 -1
cartography/models/aws/ecr/image.py +21 -0
cartography/models/aws/ecr/image_layer.py +107 -0
cartography/models/aws/identitycenter/awspermissionset.py +24 -1
cartography/models/aws/identitycenter/awssogroup.py +70 -0
cartography/models/aws/identitycenter/awsssouser.py +37 -1
cartography/models/aws/lambda_function/lambda_function.py +2 -0
cartography/models/azure/logic_apps.py +56 -0
cartography/models/azure/resource_groups.py +52 -0
cartography/models/entra/user.py +18 -0
cartography/rules/README.md +1 -0
cartography/rules/__init__.py +0 -0
cartography/rules/cli.py +342 -0
cartography/rules/data/__init__.py +0 -0
cartography/rules/data/frameworks/__init__.py +12 -0
cartography/rules/data/frameworks/mitre_attack/__init__.py +14 -0
cartography/rules/data/frameworks/mitre_attack/requirements/__init__.py +0 -0
cartography/rules/data/frameworks/mitre_attack/requirements/t1190_exploit_public_facing_application/__init__.py +135 -0
cartography/rules/formatters.py +46 -0
cartography/rules/runners.py +338 -0
cartography/rules/spec/__init__.py +0 -0
cartography/rules/spec/model.py +88 -0
cartography/rules/spec/result.py +46 -0
{cartography-0.114.0.dist-info → cartography-0.116.0.dist-info}/METADATA +19 -4
{cartography-0.114.0.dist-info → cartography-0.116.0.dist-info}/RECORD +58 -38
{cartography-0.114.0.dist-info → cartography-0.116.0.dist-info}/entry_points.txt +1 -0
{cartography-0.114.0.dist-info → cartography-0.116.0.dist-info}/WHEEL +0 -0
{cartography-0.114.0.dist-info → cartography-0.116.0.dist-info}/licenses/LICENSE +0 -0
{cartography-0.114.0.dist-info → cartography-0.116.0.dist-info}/top_level.txt +0 -0

cartography/_version.py CHANGED Viewed

@@ -28,7 +28,7 @@ version_tuple: VERSION_TUPLE
 commit_id: COMMIT_ID
 __commit_id__: COMMIT_ID
-__version__ = version = '0.114.0'
-__version_tuple__ = version_tuple = (0, 114, 0)
+__version__ = version = '0.116.0'
+__version_tuple__ = version_tuple = (0, 116, 0)
 __commit_id__ = commit_id = None

cartography/cli.py CHANGED Viewed

@@ -967,8 +967,8 @@ class CLI:
                 logger.warning("A Kandji base URI was provided but a token was not.")
                 config.kandji_token = None
         else:
-            logger.warning("A Kandji base URI was not provided.")
             config.kandji_base_uri = None
+            config.kandji_token = None
         if config.statsd_enabled:
             logger.debug(
@@ -1096,8 +1096,8 @@ class CLI:
                 logger.warning("A SnipeIT base URI was provided but a token was not.")
                 config.snipeit_token = None
         else:
-            logger.warning("A SnipeIT base URI was not provided.")
             config.snipeit_base_uri = None
+            config.snipeit_token = None
         # Tailscale config
         if config.tailscale_token_env_var:

cartography/client/core/tx.py CHANGED Viewed

@@ -19,6 +19,17 @@ from cartography.util import batch
 logger = logging.getLogger(__name__)
+def run_write_query(
+    neo4j_session: neo4j.Session, query: str, **parameters: Any
+) -> None:
+    """Execute a write query inside a managed transaction."""
+    def _run_query_tx(tx: neo4j.Transaction) -> None:
+        tx.run(query, **parameters).consume()
+    neo4j_session.execute_write(_run_query_tx)
 def read_list_of_values_tx(
     tx: neo4j.Transaction,
     query: str,
@@ -31,7 +42,7 @@ def read_list_of_values_tx(
     Example usage:
         query = "MATCH (a:TestNode) RETURN a.name ORDER BY a.name"
-        values = neo4j_session.read_transaction(read_list_of_values_tx, query)
+        values = neo4j_session.execute_read(read_list_of_values_tx, query)
     :param tx: A neo4j read transaction object
     :param query: A neo4j query string that returns a list of single values. For example,

cartography/intel/aws/config.py CHANGED Viewed

@@ -5,6 +5,7 @@ from typing import List
 import boto3
 import neo4j
+from cartography.client.core.tx import run_write_query
 from cartography.util import aws_handle_regions
 from cartography.util import run_cleanup_job
 from cartography.util import timeit
@@ -80,7 +81,8 @@ def load_configuration_recorders(
     for recorder in data:
         recorder["_id"] = f'{recorder["name"]}:{current_aws_account_id}:{region}'
-    neo4j_session.run(
+    run_write_query(
+        neo4j_session,
         ingest_configuration_recorders,
         Recorders=data,
         Region=region,
@@ -120,7 +122,8 @@ def load_delivery_channels(
     for channel in data:
         channel["_id"] = f'{channel["name"]}:{current_aws_account_id}:{region}'
-    neo4j_session.run(
+    run_write_query(
+        neo4j_session,
         ingest_delivery_channels,
         Channels=data,
         Region=region,
@@ -167,7 +170,8 @@ def load_config_rules(
             for detail in rule["Source"]["SourceDetails"]:
                 details.append(f"{detail}")
         rule["_source_details"] = details
-    neo4j_session.run(
+    run_write_query(
+        neo4j_session,
         ingest_config_rules,
         Rules=data,
         Region=region,

cartography/intel/aws/ecr.py CHANGED Viewed

@@ -57,15 +57,15 @@ def get_ecr_repository_images(
         )
         for response in describe_response:
             image_details = response["imageDetails"]
-            image_details = [
-                (
-                    {**detail, "imageTag": detail["imageTags"][0]}
-                    if detail.get("imageTags")
-                    else detail
-                )
-                for detail in image_details
-            ]
-            ecr_repository_images.extend(image_details)
+            for detail in image_details:
+                tags = detail.get("imageTags") or []
+                if tags:
+                    for tag in tags:
+                        image_detail = {**detail, "imageTag": tag}
+                        image_detail.pop("imageTags", None)
+                        ecr_repository_images.append(image_detail)
+                else:
+                    ecr_repository_images.append({**detail})
     return ecr_repository_images

cartography 0.114.0__py3-none-any.whl → 0.116.0__py3-none-any.whl

Potentially problematic release.

cartography 0.114.0py3-none-any.whl → 0.116.0py3-none-any.whl