conviso-ast 3.0.0__py3-none-any.whl

conviso_ast-3.0.0.data/scripts/flow_bash_completer.sh

@@ -0,0 +1,21 @@
+_flow_completion() {
+    local IFS=$'
+'
+    COMPREPLY=( $( env COMP_WORDS="${COMP_WORDS[*]}" \
+                   COMP_CWORD=$COMP_CWORD \
+                   _FLOW_COMPLETE=complete $1 ) )
+    return 0
+}
+
+_flow_completionetup() {
+    local COMPLETION_OPTIONS=""
+    local BASH_VERSION_ARR=(${BASH_VERSION//./ })
+    # Only BASH version 4.4 and later have the nosort option.
+    if [ ${BASH_VERSION_ARR[0]} -gt 4 ] || ([ ${BASH_VERSION_ARR[0]} -eq 4 ] && [ ${BASH_VERSION_ARR[1]} -ge 4 ]); then
+        COMPLETION_OPTIONS="-o nosort"
+    fi
+
+    complete $COMPLETION_OPTIONS -F _flow_completion flow
+}
+
+_flow_completionetup;

conviso_ast-3.0.0.data/scripts/flow_fish_completer.fish

@@ -0,0 +1 @@
+complete --no-files --command flow --arguments "(env _FLOW_COMPLETE=complete_fish COMP_WORDS=(commandline -cp) COMP_CWORD=(commandline -t) flow)";

conviso_ast-3.0.0.data/scripts/flow_zsh_completer.sh

@@ -0,0 +1,32 @@
+#compdef flow
+
+_flow_completion() {
+    local -a completions
+    local -a completions_with_descriptions
+    local -a response
+    (( ! $+commands[flow] )) && return 1
+
+    response=("${(@f)$( env COMP_WORDS="${words[*]}" \
+                        COMP_CWORD=$((CURRENT-1)) \
+                        _FLOW_COMPLETE="complete_zsh" \
+                        flow )}")
+
+    for key descr in ${(kv)response}; do
+      if [[ "$descr" == "_" ]]; then
+          completions+=("$key")
+      else
+          completions_with_descriptions+=("$key":"$descr")
+      fi
+    done
+
+    if [ -n "$completions_with_descriptions" ]; then
+        _describe -V unsorted completions_with_descriptions -U
+    fi
+
+    if [ -n "$completions" ]; then
+        compadd -U -V unsorted -a completions
+    fi
+    compstate[insert]="automenu"
+}
+
+compdef _flow_completion flow;

conviso_ast-3.0.0.dist-info/METADATA

@@ -0,0 +1,37 @@
+Metadata-Version: 2.2
+Name: conviso-ast
+Version: 3.0.0
+Maintainer: Conviso
+Maintainer-email: development@convisoappsec.com
+Project-URL: Source, https://github.com/convisoappsec/convisocli/
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+Requires-Dist: GitPython==3.1.45
+Requires-Dist: click==8.1.8
+Requires-Dist: requests==2.32.5
+Requires-Dist: urllib3==2.4.0
+Requires-Dist: semantic-version==2.10.0
+Requires-Dist: docker==7.1.0
+Requires-Dist: PyYAML==6.0.3
+Requires-Dist: click-log==0.4.0
+Requires-Dist: transitions==0.9.2
+Requires-Dist: jsonschema==4.25.1
+Requires-Dist: giturlparse<=0.12.0
+Requires-Dist: jmespath==1.0.1
+Requires-Dist: setuptools==78.1.0
+Dynamic: description
+Dynamic: description-content-type
+Dynamic: maintainer
+Dynamic: maintainer-email
+Dynamic: project-url
+Dynamic: requires-dist
+Dynamic: requires-python
+
+# AST
+
+This is a command line tool to execute Conviso AST.
+
+# Documentation
+Please visit the [official documentation] for further information.
+
+[official documentation]: <https://docs.convisoappsec.com/security-scans/conviso-ast/>

conviso_ast-3.0.0.dist-info/RECORD

@@ -0,0 +1,128 @@
+conviso_ast-3.0.0.data/scripts/flow_bash_completer.sh,sha256=9q3HPuXq_FCUUV3IFGcOefsOLhPWatUkLY7txiBM7Uo,624
+conviso_ast-3.0.0.data/scripts/flow_fish_completer.fish,sha256=-wiuarawDJkms5N-rh99brIOzhy-ktsM1mi1ohQ3Mtg,147
+conviso_ast-3.0.0.data/scripts/flow_zsh_completer.sh,sha256=cAtTDGUs5sY4NAA7AjscmLWj0dbNZ9iZhLP6BTz6dEQ,844
+convisoappsec/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/logger.py,sha256=aTNebqOau9nEadBySMTXtnbGkOkJ_q2kyFlX1mzizeg,1132
+convisoappsec/version.py,sha256=WZxVB-2_454JxgdmIIsxG-DUc65ia-VgtyjcgvV4mro,22
+convisoappsec/common/__init__.py,sha256=QN7tV2C_jhTiWUrJHv2jbeq6ae3MssgLUWpQZwe8O2s,105
+convisoappsec/common/box.py,sha256=WTtPF3YWxkcdblPmFTzrzQlPPPUwVsDt2zoi6xFMy1U,7561
+convisoappsec/common/cleaner.py,sha256=Iy8BWCXj_v51oovcYzI_uhaJzLL-fCUyDxrbBglfwEs,2680
+convisoappsec/common/docker.py,sha256=SYkZCgKS_kuREyJS_Zb4d61MWb58HoiFbxkSRzLJr0g,12529
+convisoappsec/common/exceptions.py,sha256=Das7j6_nzB75-TY9xoVK12eswvxSntxI19nmXdjumzI,230
+convisoappsec/common/git_data_parser.py,sha256=-Ou1YC8D4bpmHUcibxLiJf2rxKi8-SuTuto-6nB-ML8,2167
+convisoappsec/common/retry_handler.py,sha256=MAwwD3QgxHZDJI87C8NPxYzxM4NBwGe3RflV7jRciAw,1495
+convisoappsec/common/strings.py,sha256=JqBqW1redAfWTWtUFya2MvrW5T26Y07Vn0pbee-BpMo,185
+convisoappsec/common/graphql/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/common/graphql/error_handlers.py,sha256=1KUBa1zYiN_Gs2uwPsjl4LovoRFboWc16U7f680FfNE,2058
+convisoappsec/common/graphql/errors.py,sha256=uWL4wkYG5Iqumu-m74HnW70QP0P9aBfBJKIfZFmgxgE,248
+convisoappsec/common/graphql/low_client.py,sha256=RUKDx9N7li8BMj3zmRTWIm57a4-XoEHg2MkbvXyT7tg,1407
+convisoappsec/flow/__init__.py,sha256=rjT1EIvy-xBfObIefOdxPfl1gQmYkHbFODYzI4VFXpQ,81
+convisoappsec/flow/api.py,sha256=d9jOdr4jX8bD4BCMLT3jKCZO8W5mVpqRJGQIYS245hE,2493
+convisoappsec/flow/cleaner.py,sha256=DRCrq_CkamYTZJTdbv_PYBCqgKz0N2ukFw2dued7nfQ,3679
+convisoappsec/flow/version_control_system_adapter.py,sha256=glkG2pEIPSwBEFAZPHlqDuwk87ktiGUmSKaJrdWpYik,16056
+convisoappsec/flow/graphql_api/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/beta/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/beta/client.py,sha256=PPisDsUjFriDCT2EpHNPvw7bD_qYwGArFErsWbpBgIk,502
+convisoappsec/flow/graphql_api/beta/resources_api.py,sha256=BKGVamCObXMxgK2ZVJLpUigwX7TNCBWyG9Mpti550wU,4339
+convisoappsec/flow/graphql_api/beta/models/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/beta/models/issues/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/beta/models/issues/container.py,sha256=-XJ5aA1ixd-QT-yNJwNdwxds_CkakEQDQxwbxFDiTj8,2392
+convisoappsec/flow/graphql_api/beta/models/issues/iac.py,sha256=NKHnfzj3DGlc89_W1KMJ8NkmnfrS7vzlF__BHNjrnyA,228
+convisoappsec/flow/graphql_api/beta/models/issues/normalize.py,sha256=apo20vmNJuRXNqXS3d9vRMthKGm9Z1RCqGPbdGZ6keE,421
+convisoappsec/flow/graphql_api/beta/models/issues/sast.py,sha256=b8ZiXuTlMlx8iOlG-dPl4X6ndLeuci122-Ly68nxYEI,1820
+convisoappsec/flow/graphql_api/beta/models/issues/sca.py,sha256=dGHp-hfb9BRfBVvnnAtloDaTVcvf4-ucbRBjt6LcqV0,2637
+convisoappsec/flow/graphql_api/beta/schemas/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/beta/schemas/mutations/__init__.py,sha256=zD9sJLO23bpMJn3NTY8C0_UAYEsnezKbldant_VQxoA,1119
+convisoappsec/flow/graphql_api/beta/schemas/resolvers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/v1/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/v1/client.py,sha256=bhtpYRWFiW8bvxScUwYKv7HamWAqNx_uckFDmrP42Po,1197
+convisoappsec/flow/graphql_api/v1/resources_api.py,sha256=aW3B9rxcX6tnduiwLiuZrDkV1UQPCj9PU5dyfZCKzIE,14887
+convisoappsec/flow/graphql_api/v1/models/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/v1/models/asset.py,sha256=rhHgQKXaRheksCSc8neMWQwd-cKB-noPpeO423nKFUQ,430
+convisoappsec/flow/graphql_api/v1/models/issues.py,sha256=ZAM_aPwj20I7cApX1leCDVI8cX5LhcKAY1vkesNI_Ak,511
+convisoappsec/flow/graphql_api/v1/models/project.py,sha256=CDZlufsT-_iQIOgpOPAtdmcv0JvHWFd6TjcDIAj6w7c,972
+convisoappsec/flow/graphql_api/v1/schemas/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/graphql_api/v1/schemas/mutations/__init__.py,sha256=R9LgniQyj694h1MD7cn1-HJRDjI4PLiOrCmsqjp16ho,3251
+convisoappsec/flow/graphql_api/v1/schemas/resolvers/__init__.py,sha256=2jAgzA-8te6HyyV8RVAx0BnLDeZhFulZynbxm5JR8Sc,2713
+convisoappsec/flow/source_code_scanner/__init__.py,sha256=UvfLXNR1B8Fy6LuUwesQMXV0oMkLjVMhPs0SJ5nDR0k,227
+convisoappsec/flow/source_code_scanner/exceptions.py,sha256=6ehUyZaFfMIRMzKdh0MND8gfyTNyHY_wsprmxkxSJD0,57
+convisoappsec/flow/source_code_scanner/scc.py,sha256=O_kdWsw2x0czuKcLORD3gP5wbXsizj4Bb2Sbsk5n_Sw,1645
+convisoappsec/flow/source_code_scanner/source_code_scanner.py,sha256=L9LVZnUO-o_JvT8dHUxBXcbxQlxSqRP8CVUBgTUEV7s,4726
+convisoappsec/flow/util/__init__.py,sha256=rpu69qnn68rqrK3rhPcgrVYWCIW9WVSrQ5FyCeHxng4,160
+convisoappsec/flow/util/ci_provider.py,sha256=VYDESwNFbtrRcWDtTEb8tYDN5qbnLksmQI_ntsciJ4I,2093
+convisoappsec/flow/util/metrics.py,sha256=4qGBMMR02OZN4ezFiB9iqtCuUYO8bXYqeUNDFRDpQaw,480
+convisoappsec/flow/util/source_code_compressor.py,sha256=b2iA8Exf8wVbxR1mnvwTbruDjdpYyVloUmSlyYLSJQU,508
+convisoappsec/flow/version_searchers/__init__.py,sha256=rJkVGlmWiiDHegvQl7d900RvnglzICXpTxuUiLlHSz0,294
+convisoappsec/flow/version_searchers/sorted_by_versioning_style.py,sha256=xLjaHy-WDOgY5jrASnaK-uM0UL-9sL3BALwzmM5PgSA,2657
+convisoappsec/flow/version_searchers/timebased_version_seacher.py,sha256=fO3o93n4cgKJKYMtCtd76Yc80jFPal4EYf0ubhZGaoI,1266
+convisoappsec/flow/version_searchers/version_searcher_result.py,sha256=RxROFRuQ0GXE9MhW6oKg2sPzZHkwhuaffkTUH6xDWZw,943
+convisoappsec/flow/versioning_style/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flow/versioning_style/semantic_versioning.py,sha256=a47GNtPQbZ5MEjFypwyc7JVxSlbSY1xci-1woo54Ss0,1041
+convisoappsec/flowcli/__init__.py,sha256=cNqNWO7nd1wyFCvYUQPWhRxZnwwwMnHbcppXqWt0SJA,64
+convisoappsec/flowcli/__main__.py,sha256=9Bop0ORSNHNOe4uMhTq6UFvVfhQufGy3Mdim1qblIqk,99
+convisoappsec/flowcli/common.py,sha256=wmasRcE9J8pBCyRmpdNRdynHOlM6OsWdKhpRhMU8OmA,4881
+convisoappsec/flowcli/context.py,sha256=67I1u11HIIW6BKs_hALLETWVe25ZgBhq1sqAOHXq_e4,1309
+convisoappsec/flowcli/entrypoint.py,sha256=V8zAF_tMFzz9FbEaqkHF_KK7xPMY8XXVq9zSG93sNVM,2754
+convisoappsec/flowcli/environment_checker.py,sha256=NEWIiTVlbBIRwQ9AyAwM2okTjQ1MRvZoZ_OSMtIewGk,1714
+convisoappsec/flowcli/help_option.py,sha256=JW9qp_S7UMFQR2MVJP5x82zBKlo7DhGiw403ukGwfAY,331
+convisoappsec/flowcli/requirements_verifier.py,sha256=CCRizESeRNAn013SgdNRStv-AEVfZrZMdWo0YQN5T4w,5206
+convisoappsec/flowcli/assets/__init__.py,sha256=9ry90G81ARDlvMJVtA1GwTHxjDfmI8g15etShDuZgZA,54
+convisoappsec/flowcli/assets/create.py,sha256=JDmxDH1WbyaQYLTxoi6dS_WosRm7kjvpJVDEJ3Cp8fw,2278
+convisoappsec/flowcli/assets/entrypoint.py,sha256=CEoev3d1ogclPNP3l31PBhGkoiZZ400kxsnnF02uxFk,310
+convisoappsec/flowcli/assets/ls.py,sha256=IYfKIca218BvZ5ecrtDgZ_T8xVg0XO3Eq1kK16BMBsc,1484
+convisoappsec/flowcli/ast/__init__.py,sha256=9SO9inH22PPm4jLlljVTJEeJKZujFKfwqTBbBo-TwFM,47
+convisoappsec/flowcli/ast/entrypoint.py,sha256=pwkXn9R1FNuUlTGrwUIMCacpklYSFR9BFDB59a_ivcU,15946
+convisoappsec/flowcli/companies/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flowcli/companies/ls.py,sha256=0287VTXOkKnuXTaJh392crYjx0qank0pBvmESq3P_Bw,892
+convisoappsec/flowcli/container/__init__.py,sha256=Z666kQa4qVfbcuyLaW_hvORdAPtZ9dTQFcQb2H2Nkfg,59
+convisoappsec/flowcli/container/entrypoint.py,sha256=G5db82E0MrQSF7lk_7O7IodCmFtuKizXvCdMPfTc-Jc,268
+convisoappsec/flowcli/container/run.py,sha256=XRjxQvetw-Kdyg9rRSg8rh_vw_E9zJPjoVhYJrtpcS8,9894
+convisoappsec/flowcli/deploy/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/flowcli/deploy/create/__init__.py,sha256=l7eIySVkTKr3auZ8Fwe7G6AG6-pM06vnl3aZcEclVP4,54
+convisoappsec/flowcli/deploy/create/context.py,sha256=iazxDAx4SEGHJP9Psd16wUL9KlgKqlGdsBU8dU_jW48,190
+convisoappsec/flowcli/deploy/create/entrypoint.py,sha256=NAc6wnFKYpPSvLrE0v89zTDAlV3XJ9nEn4EMvrV-tFo,677
+convisoappsec/flowcli/deploy/create/with_/__init__.py,sha256=dfk3jJnixGV1_-YLopkoLFHIK0nWCMC9YxrcLYCbCRo,51
+convisoappsec/flowcli/deploy/create/with_/entrypoint.py,sha256=h0EVvgNzW_e3iuxH_kVd30jOWXrY7B0uzzrfzRVvO_A,346
+convisoappsec/flowcli/deploy/create/with_/values.py,sha256=rJ4l35xfkd5x2pGMRpHMLd3UArFC-gvJddVqHERiQ7w,4661
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/__init__.py,sha256=fu1DRXmTRncvmgNBFgKF3psy-dYmVXsTD6vFJXDsvbo,64
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/context.py,sha256=IZjsKSzetrjVyFKhO6NBrfCypf8MO-AFYNfRxkYJZww,194
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/entrypoint.py,sha256=MUrx_fqAFQeJ2oUaAxRDPfk_qlgyNHKFMNZqmiDFWrU,675
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/__init__.py,sha256=c1sggCq3RGdgyq0tqdxx_yGW1iOeBti2aoNsoiMxKnc,56
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/entrypoint.py,sha256=J5dSGo0P__fKlPpeaVcAmyFnnAtZPi0E2y4Hv_U-ZQM,382
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/time_.py,sha256=Ipkz0bVXfJlbYHfPFICY3VUZYwlL2gxuHUqVVtvSyzQ,2721
+convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/versioning_style.py,sha256=-FJF4BOLzzpcJqYHlYJovRuvoUut7gLoxDWKnT6CzH0,3416
+convisoappsec/flowcli/findings/__init__.py,sha256=0wiNMaThYuum1QA9s9-LGtcmWFxUY-mWiYMtTSuaDqY,58
+convisoappsec/flowcli/findings/entrypoint.py,sha256=foc6wgD2BsoFZkJQiIuis260Zt-3DkTLsxej7cHv9Ko,344
+convisoappsec/flowcli/findings/create/__init__.py,sha256=l7eIySVkTKr3auZ8Fwe7G6AG6-pM06vnl3aZcEclVP4,54
+convisoappsec/flowcli/findings/create/entrypoint.py,sha256=EK2xThAzhMDV4aOxzUgEbT-adOkmFsX5R96CEKCuUmU,269
+convisoappsec/flowcli/findings/create/with_/__init__.py,sha256=dfk3jJnixGV1_-YLopkoLFHIK0nWCMC9YxrcLYCbCRo,51
+convisoappsec/flowcli/findings/create/with_/entrypoint.py,sha256=Bvbh0YIixAPD5ullp7bkpY9oub0YTEBu3hkUfKTJVtU,309
+convisoappsec/flowcli/findings/create/with_/version_tracker.py,sha256=NrnYx6OMQWXRMYDU5ND0c0O4zUER2U3wrNzWsD5TisE,2637
+convisoappsec/flowcli/findings/import_sarif/__init__.py,sha256=3iR7f9V9NdoIQTrD25EVu6OAYPPJ4RZEaM4P34BS0js,66
+convisoappsec/flowcli/findings/import_sarif/entrypoint.py,sha256=MIHi9ZWU2Jn2o7o5mDLp81xfb14gsa33aGnqh1YR7n8,13740
+convisoappsec/flowcli/iac/__init__.py,sha256=a3IZzSKpm987fMEliTECDeXO_Eduk7eg-aQzmaWvUXQ,47
+convisoappsec/flowcli/iac/entrypoint.py,sha256=vGsHdIss3KEWartTZkKl7k5w1qxhYIVqHGOJdklc3b8,241
+convisoappsec/flowcli/iac/run.py,sha256=q-bndWtZb9xYE9U_4aMHcZ3WtgHyXQBqUkjHTk-hdwI,11071
+convisoappsec/flowcli/sast/__init__.py,sha256=S4O78eZGhgpT2lZY3GSUIUTQJB5a62uAVirEqbf4EQY,49
+convisoappsec/flowcli/sast/entrypoint.py,sha256=7bvQ6mVLWvykGfjD-o0xbu7ybm8Hj2DTqvCv5CstIas,245
+convisoappsec/flowcli/sast/run.py,sha256=7uX6K1VLASU8RnoCKNYIIqXSsNkF4JQ8OKhAG2CKjuI,16353
+convisoappsec/flowcli/sbom/__init__.py,sha256=qzwiPWniK41Y41XvJJhxtRZguHrSSenb57lhy64KnSc,49
+convisoappsec/flowcli/sbom/entrypoint.py,sha256=ax2WL5BtCu24NeZYe6zzCVZ2ujlviXkvtY7PZihlz3s,263
+convisoappsec/flowcli/sbom/generate.py,sha256=Oke4JX4vARqpsMlGC2cPye_LMapIMRDyZv2W14hoD8g,7170
+convisoappsec/flowcli/sca/__init__.py,sha256=xnVoxwbpe4LrEemmWJ6svr3zdpo9S4kEIvM4HVRsLX8,47
+convisoappsec/flowcli/sca/entrypoint.py,sha256=LpFoiZ3iljhAyKzfMJ7pdBdHIUhnjh3ZguPgvWJZ-XA,241
+convisoappsec/flowcli/sca/run.py,sha256=FWnTHgMgnIRvJSpMIkFcb6YMtvWEjEpKJyXEkjAZpA4,16725
+convisoappsec/flowcli/vulnerability/__init__.py,sha256=c18E0J1KfZBBqpv8XGxF5dv7dxCDquFkjGkdnvFDSYI,67
+convisoappsec/flowcli/vulnerability/assert_security_rules.py,sha256=j7VcondMeZSRxWz118aWS9qUSGdvsq4Mg-_9UXp8Dyw,6075
+convisoappsec/flowcli/vulnerability/container_vulnerability_manager.py,sha256=EkJhbUm1DTP14mIg_ZC4SKFSlvTtfPpSpNAMWPkwrsc,6897
+convisoappsec/flowcli/vulnerability/entrypoint.py,sha256=WsQkEJSbb9CwPm_deUtata9omEYYcaZnssYKTAybtjA,386
+convisoappsec/flowcli/vulnerability/rules_schema.json,sha256=OBkj9RMXltGoJYsyPqOsrJDfcyrQDlQHk9b5i9rMhoc,948
+convisoappsec/flowcli/vulnerability/run.py,sha256=6flmvr55cKxj-duX3w4PAFwJgC5AJ0NYJ9Zk3FZHFII,17144
+convisoappsec/sast/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+convisoappsec/sast/decision.py,sha256=d7dcNr9yZMzyccpFS_peAmDo0ZtfsE1qXDdYrvCux2U,1025
+convisoappsec/sast/sastbox.py,sha256=hXZLiYh_F3f6yd1ydPYVOMKg-tNOQOZiBvKmWyedagI,11031
+conviso_ast-3.0.0.dist-info/METADATA,sha256=ibjt1tIB2ghrzamhcBOiYfZSUOeEH2wEZg-sOySlk2A,1075
+conviso_ast-3.0.0.dist-info/WHEEL,sha256=In9FTNxeP60KnTkGw7wk6mJPYd_dQSjEZmXdBdMCI-8,91
+conviso_ast-3.0.0.dist-info/entry_points.txt,sha256=0IvamweR_V0uG4O5Fo9NpVHTHfpZRwUE9kn7KEVZ668,109
+conviso_ast-3.0.0.dist-info/top_level.txt,sha256=ju5r0RSCF1HA7m9JOG10jrQS4SnqQEJzl6-YMCxbSl4,14
+conviso_ast-3.0.0.dist-info/RECORD,,

conviso_ast-3.0.0.dist-info/WHEEL

@@ -0,0 +1,5 @@
+Wheel-Version: 1.0
+Generator: setuptools (75.8.0)
+Root-Is-Purelib: true
+Tag: py3-none-any
+

conviso_ast-3.0.0.dist-info/entry_points.txt

@@ -0,0 +1,3 @@
+[console_scripts]
+conviso = convisoappsec.flowcli.entrypoint:cli
+flow = convisoappsec.flowcli.entrypoint:cli

conviso_ast-3.0.0.dist-info/top_level.txt

@@ -0,0 +1 @@
+convisoappsec

convisoappsec/common/__init__.py

@@ -0,0 +1,5 @@
+from urllib.parse import urljoin
+
+
+def safe_join_url(base_url, path):
+    return urljoin(base_url, path)

convisoappsec/common/box.py

@@ -0,0 +1,251 @@
+import docker
+import tarfile
+import tempfile
+import time
+from concurrent.futures import ThreadPoolExecutor
+
+from transitions import Machine
+from transitions.extensions.states import Timeout, add_state_features
+
+from convisoappsec.common.docker import SCSCommon
+from convisoappsec.logger import LOGGER
+
+RAW_STATE_MSG = 'Scanner {} entered on {} state'
+
+
+class SARIFParsingError(BaseException):
+    pass
+
+
+class PropertyRequiredError(SARIFParsingError):
+    def __init__(self, stderr_log=''):
+        pretty_error = self.__parse_pretty_property_error(stderr_log)
+        print('Error:', pretty_error)
+
+    def __parse_pretty_property_error(self, stderr_logs):
+        expected_error_line = ''
+
+        for log_line in stderr_logs.split('\n'):
+            expected_error_text = 'PropertyRequiredError'
+            if expected_error_text in log_line:
+                expected_error_line = log_line
+                break
+
+        error = self.__extract_text_after_colon(expected_error_line)
+
+        return error.strip()
+
+    def __extract_text_after_colon(self, text):
+        try:
+            return text.split(':', 3)[-1]
+        except IndexError:
+            return ''
+
+
+@add_state_features(Timeout)
+class ScannerMachine(Machine):
+    pass
+
+
+class ScannerEntity:
+
+    def __init__(self, token, scanner, logger=None, timeout=7200):
+        self.logger = logger or LOGGER
+        self.token = token
+
+        self.scanner = self.__setup_scanner(scanner)
+        self.name = self.scanner.name
+        self.results = None
+
+        self.states = [
+            'waiting',
+            {'name': 'pulling', 'timeout': timeout, 'on_timeout': self._on_timeout},
+            {'name': 'running', 'timeout': timeout, 'on_timeout': self._on_timeout},
+            {'name': 'sending', 'timeout': timeout, 'on_timeout': self._on_timeout},
+            'done'
+        ]
+        self.machine = ScannerMachine(
+            model=self,
+            states=self.states,
+            initial='waiting'
+        )
+        self.machine.add_ordered_transitions()
+        self._set_callbacks()
+        self.to_waiting()
+
+    def __setup_scanner(self, scanner):
+        if isinstance(scanner, SCSCommon):
+            return scanner
+        else:
+            return self._instanciate_scanner(scanner)
+
+    def _set_callbacks(self):
+        self.machine.on_enter_waiting('_on_waiting')
+        self.machine.on_enter_pulling('_on_pulling')
+        self.machine.on_enter_running('_on_running')
+        self.machine.on_enter_sending('_on_sending')
+        self.machine.on_enter_done('_on_done')
+
+    def _instanciate_scanner(self, data):
+        return SCSCommon(
+            **data,
+            token=self.token,
+            logger=self.logger,
+        )
+
+    def _on_timeout(self):
+        self.logger.debug('Scanner {} timeout on state {}'.format(
+            self.name, self.state
+        ))
+
+    def _on_waiting(self):
+        self.logger.debug(RAW_STATE_MSG.format(
+            self.name, self.state
+        ))
+
+    def _on_pulling(self):
+        self.logger.debug(RAW_STATE_MSG.format(
+            self.name, self.state
+        ))
+        image = self.scanner.pull()
+        if image:
+            self.logger.debug('Image: {}'.format(image))
+            self.next_state()
+        else:
+            raise RuntimeError("Image not found.")
+
+    def _on_running(self):
+        self.scanner.run()
+        self.end_time = time.time()
+        self.logger.debug('Total execution time for {} was {:2f}'.format(
+            self.scanner.repository_name,
+            self.end_time - self.start_time
+        ))
+        self.next_state()
+
+    def _on_sending(self):
+        self.logger.debug(RAW_STATE_MSG.format(
+            self.name, self.state
+        ))
+        self.results = self.scanner.get_container_reports()
+        self.next_state()
+
+    def _on_done(self):
+        self.logger.debug(RAW_STATE_MSG.format(
+            self.scanner.repository_name, self.state
+        ))
+        self.scanner.container.remove(v=True, force=True)
+
+    def start(self):
+        self.start_time = time.time()
+        self.to_pulling()
+
+
+class ContainerWrapper:
+
+    def __init__(self, token, containers_map, logger, timeout, max_workers=5):
+        self.token = token
+        self.logger = logger or LOGGER
+        self.max_workers = max_workers
+        self.scanners = [
+            ScannerEntity(
+                token=token,
+                scanner=scanner,
+                logger=logger,
+                timeout=timeout
+            )
+            for scanner in containers_map.values()
+        ]
+
+    def run(self):
+        self.logger.debug("Starting Execution")
+        with ThreadPoolExecutor(max_workers=self.max_workers) as exeggutor:
+            for scanner in self.scanners:
+                exeggutor.submit(scanner.start)
+
+
+def convert_sarif_to_sastbox1(report_filepath, repository_dir, container_registry_token, scanner_timeout=7200):
+    """
+    Args:
+        report_filepath (str): filepath to the report to be converted
+        repository_dir (str): filepath to the repository being tested
+        token (str): Conviso container registry token
+        scanner_timeout (int): container timeout
+
+    Returns:
+        string: filepath to the converted report
+    """
+    CONTAINER_IMAGE_NAME = 'sastbox-converter-tool'
+    CONTAINER_IMAGE_TAG = 'cc50dee'
+
+    CONTAINER_INPUT_FILEPATH = '/code{}'.format(
+        report_filepath.replace(repository_dir, '')
+    )
+    CONTAINER_OUTPUT_FILENAME = CONTAINER_INPUT_FILEPATH.replace(
+        'sarif', 'json'
+    )
+
+    CONTAINERS_MAP = {
+        CONTAINER_IMAGE_NAME: {
+            'repository_dir': repository_dir,
+            'repository_name': CONTAINER_IMAGE_NAME,
+            'tag': CONTAINER_IMAGE_TAG, 
+            'command': [
+                '--format', 'sastbox1',
+                '--input', CONTAINER_INPUT_FILEPATH,
+                '--output', CONTAINER_OUTPUT_FILENAME
+            ],
+        },
+    }
+    converter_wrapped = ContainerWrapper(
+        token=container_registry_token,
+        containers_map=CONTAINERS_MAP,
+        logger=None,
+        timeout=scanner_timeout
+    )
+
+    converter_wrapped.logger.setLevel('WARN')
+    converter_wrapped.run()
+    converter_wrapped.logger.setLevel('INFO')
+
+    scanner = converter_wrapped.scanners[0].scanner
+    last_scan_name = scanner.name
+    last_container = scanner.docker.containers.get(
+        last_scan_name
+    )
+
+    try:
+        chunks, _ = last_container.get_archive(CONTAINER_OUTPUT_FILENAME)
+        output_filepath = __extract_tarball_chunks(
+            chunks, report_filepath.replace('sarif', 'json')
+        )
+    except docker.errors.APIError as error:
+        stderr_log = last_container.logs(stderr=True).decode('utf-8')
+        raise PropertyRequiredError(stderr_log)
+
+    return output_filepath
+
+
+def __extract_tarball_chunks(tarball_chunks, report_absolute_filepath):
+    """
+
+    Args:
+        tarball_chunks (int): The number of bytes returned by each iteration of the generator
+        report_filename (string): The name of the extracted report
+
+    Returns:
+        string: Report absolute filepath in local filesystem
+    """
+    output_dirpath = report_absolute_filepath[
+        :report_absolute_filepath.rfind('/')
+    ]
+
+    with tempfile.TemporaryFile() as tmp_wrapper_file:
+        for chunk in tarball_chunks:
+            tmp_wrapper_file.write(chunk)
+        tmp_wrapper_file.seek(0)
+
+        with tarfile.open(mode="r|", fileobj=tmp_wrapper_file) as talball_file:
+            talball_file.extractall(path=output_dirpath)
+
+    return report_absolute_filepath

convisoappsec/common/cleaner.py

@@ -0,0 +1,78 @@
+import os
+import shutil
+import tempfile
+import docker
+
+class Cleaner:
+    """Responsible for cleaning temporary files, Docker containers, images, and volumes."""
+
+    def __init__(self):
+        try:
+            self.client = docker.from_env()
+        except Exception as e:
+            print(f"Error initializing Docker client: {e}")
+            self.client = None
+
+    def cleanup(self):
+        """ Responsable to clean dirs, docker images and containers after all executions,
+            removes all stopped containers, unused networks, dangling images, and build cache.
+        """
+        try:
+            client = docker.from_env()
+            self.perform_cleanup()
+
+            for container in client.containers.list(all=True):
+                try:
+                    container.remove()
+                except Exception:
+                    continue
+
+            for image in client.images.list():
+                if image.tags and any(tag.startswith("public.ecr.aws/convisoappsec/") for tag in image.tags):
+                    try:
+                        client.images.remove(image.id)
+                    except Exception as e:
+                        print(f"Error removing image {image.tags}: {e}")
+                        continue
+
+            volumes = client.volumes.list()
+            for volume in volumes:
+                try:
+                    volume.remove()
+                except Exception:
+                    continue
+
+        except Exception as e:
+            print(f"An unexpected error occurred: {e}")
+            return
+
+    def perform_cleanup(self):
+       """Method to clean the tmp directory and remove 'conviso-output-' directories in the current directory."""
+
+       tmp_dir = tempfile.gettempdir()
+
+       # Clear system temp directory
+       try:
+           for filename in os.listdir(tmp_dir):
+               file_path = os.path.join(tmp_dir, filename)
+               try:
+                   if os.path.isfile(file_path) or os.path.islink(file_path):
+                       os.remove(file_path)
+                   elif os.path.isdir(file_path):
+                       shutil.rmtree(file_path)
+               except Exception:
+                   pass
+       except Exception:
+           pass
+
+       # Clear 'conviso-output-' directories in the current directory
+       try:
+           for filename in os.listdir("."):
+               dir_path = os.path.join(".", filename)
+               if os.path.isdir(dir_path) and filename.startswith("conviso-output-"):
+                   try:
+                       shutil.rmtree(dir_path)
+                   except Exception:
+                       pass
+       except Exception:
+           pass