PyPI - conviso-ast - Versions diffs - 3.0.0__py3-none-any.whl - Mend

conviso-ast 3.0.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (128) hide show

conviso_ast-3.0.0.data/scripts/flow_bash_completer.sh +21 -0
conviso_ast-3.0.0.data/scripts/flow_fish_completer.fish +1 -0
conviso_ast-3.0.0.data/scripts/flow_zsh_completer.sh +32 -0
conviso_ast-3.0.0.dist-info/METADATA +37 -0
conviso_ast-3.0.0.dist-info/RECORD +128 -0
conviso_ast-3.0.0.dist-info/WHEEL +5 -0
conviso_ast-3.0.0.dist-info/entry_points.txt +3 -0
conviso_ast-3.0.0.dist-info/top_level.txt +1 -0
convisoappsec/__init__.py +0 -0
convisoappsec/common/__init__.py +5 -0
convisoappsec/common/box.py +251 -0
convisoappsec/common/cleaner.py +78 -0
convisoappsec/common/docker.py +399 -0
convisoappsec/common/exceptions.py +8 -0
convisoappsec/common/git_data_parser.py +76 -0
convisoappsec/common/graphql/__init__.py +0 -0
convisoappsec/common/graphql/error_handlers.py +75 -0
convisoappsec/common/graphql/errors.py +16 -0
convisoappsec/common/graphql/low_client.py +51 -0
convisoappsec/common/retry_handler.py +40 -0
convisoappsec/common/strings.py +8 -0
convisoappsec/flow/__init__.py +3 -0
convisoappsec/flow/api.py +104 -0
convisoappsec/flow/cleaner.py +118 -0
convisoappsec/flow/graphql_api/__init__.py +0 -0
convisoappsec/flow/graphql_api/beta/__init__.py +0 -0
convisoappsec/flow/graphql_api/beta/client.py +18 -0
convisoappsec/flow/graphql_api/beta/models/__init__.py +0 -0
convisoappsec/flow/graphql_api/beta/models/issues/__init__.py +0 -0
convisoappsec/flow/graphql_api/beta/models/issues/container.py +72 -0
convisoappsec/flow/graphql_api/beta/models/issues/iac.py +6 -0
convisoappsec/flow/graphql_api/beta/models/issues/normalize.py +13 -0
convisoappsec/flow/graphql_api/beta/models/issues/sast.py +53 -0
convisoappsec/flow/graphql_api/beta/models/issues/sca.py +78 -0
convisoappsec/flow/graphql_api/beta/resources_api.py +142 -0
convisoappsec/flow/graphql_api/beta/schemas/__init__.py +0 -0
convisoappsec/flow/graphql_api/beta/schemas/mutations/__init__.py +61 -0
convisoappsec/flow/graphql_api/beta/schemas/resolvers/__init__.py +0 -0
convisoappsec/flow/graphql_api/v1/__init__.py +0 -0
convisoappsec/flow/graphql_api/v1/client.py +46 -0
convisoappsec/flow/graphql_api/v1/models/__init__.py +0 -0
convisoappsec/flow/graphql_api/v1/models/asset.py +14 -0
convisoappsec/flow/graphql_api/v1/models/issues.py +16 -0
convisoappsec/flow/graphql_api/v1/models/project.py +35 -0
convisoappsec/flow/graphql_api/v1/resources_api.py +489 -0
convisoappsec/flow/graphql_api/v1/schemas/__init__.py +0 -0
convisoappsec/flow/graphql_api/v1/schemas/mutations/__init__.py +212 -0
convisoappsec/flow/graphql_api/v1/schemas/resolvers/__init__.py +180 -0
convisoappsec/flow/source_code_scanner/__init__.py +9 -0
convisoappsec/flow/source_code_scanner/exceptions.py +2 -0
convisoappsec/flow/source_code_scanner/scc.py +68 -0
convisoappsec/flow/source_code_scanner/source_code_scanner.py +177 -0
convisoappsec/flow/util/__init__.py +7 -0
convisoappsec/flow/util/ci_provider.py +99 -0
convisoappsec/flow/util/metrics.py +16 -0
convisoappsec/flow/util/source_code_compressor.py +22 -0
convisoappsec/flow/version_control_system_adapter.py +528 -0
convisoappsec/flow/version_searchers/__init__.py +9 -0
convisoappsec/flow/version_searchers/sorted_by_versioning_style.py +85 -0
convisoappsec/flow/version_searchers/timebased_version_seacher.py +39 -0
convisoappsec/flow/version_searchers/version_searcher_result.py +33 -0
convisoappsec/flow/versioning_style/__init__.py +0 -0
convisoappsec/flow/versioning_style/semantic_versioning.py +44 -0
convisoappsec/flowcli/__init__.py +3 -0
convisoappsec/flowcli/__main__.py +4 -0
convisoappsec/flowcli/assets/__init__.py +4 -0
convisoappsec/flowcli/assets/create.py +88 -0
convisoappsec/flowcli/assets/entrypoint.py +20 -0
convisoappsec/flowcli/assets/ls.py +63 -0
convisoappsec/flowcli/ast/__init__.py +3 -0
convisoappsec/flowcli/ast/entrypoint.py +427 -0
convisoappsec/flowcli/common.py +175 -0
convisoappsec/flowcli/companies/__init__.py +0 -0
convisoappsec/flowcli/companies/ls.py +25 -0
convisoappsec/flowcli/container/__init__.py +3 -0
convisoappsec/flowcli/container/entrypoint.py +17 -0
convisoappsec/flowcli/container/run.py +306 -0
convisoappsec/flowcli/context.py +49 -0
convisoappsec/flowcli/deploy/__init__.py +0 -0
convisoappsec/flowcli/deploy/create/__init__.py +4 -0
convisoappsec/flowcli/deploy/create/context.py +12 -0
convisoappsec/flowcli/deploy/create/entrypoint.py +31 -0
convisoappsec/flowcli/deploy/create/with_/__init__.py +3 -0
convisoappsec/flowcli/deploy/create/with_/entrypoint.py +20 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/__init__.py +4 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/context.py +11 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/entrypoint.py +30 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/__init__.py +4 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/entrypoint.py +21 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/time_.py +84 -0
convisoappsec/flowcli/deploy/create/with_/tag_tracker/sort_by/versioning_style.py +115 -0
convisoappsec/flowcli/deploy/create/with_/values.py +133 -0
convisoappsec/flowcli/entrypoint.py +103 -0
convisoappsec/flowcli/environment_checker.py +45 -0
convisoappsec/flowcli/findings/__init__.py +4 -0
convisoappsec/flowcli/findings/create/__init__.py +4 -0
convisoappsec/flowcli/findings/create/entrypoint.py +18 -0
convisoappsec/flowcli/findings/create/with_/__init__.py +3 -0
convisoappsec/flowcli/findings/create/with_/entrypoint.py +19 -0
convisoappsec/flowcli/findings/create/with_/version_tracker.py +93 -0
convisoappsec/flowcli/findings/entrypoint.py +19 -0
convisoappsec/flowcli/findings/import_sarif/__init__.py +4 -0
convisoappsec/flowcli/findings/import_sarif/entrypoint.py +430 -0
convisoappsec/flowcli/help_option.py +18 -0
convisoappsec/flowcli/iac/__init__.py +3 -0
convisoappsec/flowcli/iac/entrypoint.py +17 -0
convisoappsec/flowcli/iac/run.py +328 -0
convisoappsec/flowcli/requirements_verifier.py +132 -0
convisoappsec/flowcli/sast/__init__.py +3 -0
convisoappsec/flowcli/sast/entrypoint.py +17 -0
convisoappsec/flowcli/sast/run.py +485 -0
convisoappsec/flowcli/sbom/__init__.py +3 -0
convisoappsec/flowcli/sbom/entrypoint.py +17 -0
convisoappsec/flowcli/sbom/generate.py +235 -0
convisoappsec/flowcli/sca/__init__.py +3 -0
convisoappsec/flowcli/sca/entrypoint.py +17 -0
convisoappsec/flowcli/sca/run.py +479 -0
convisoappsec/flowcli/vulnerability/__init__.py +3 -0
convisoappsec/flowcli/vulnerability/assert_security_rules.py +201 -0
convisoappsec/flowcli/vulnerability/container_vulnerability_manager.py +175 -0
convisoappsec/flowcli/vulnerability/entrypoint.py +18 -0
convisoappsec/flowcli/vulnerability/rules_schema.json +53 -0
convisoappsec/flowcli/vulnerability/run.py +487 -0
convisoappsec/logger.py +29 -0
convisoappsec/sast/__init__.py +0 -0
convisoappsec/sast/decision.py +45 -0
convisoappsec/sast/sastbox.py +296 -0
convisoappsec/version.py +1 -0

convisoappsec/flow/version_searchers/sorted_by_versioning_style.py ADDED Viewed

@@ -0,0 +1,85 @@
+import warnings
+from convisoappsec.flow.versioning_style import semantic_versioning
+from .version_searcher_result import VersionSearcherResult
+class SortedByVersioningStyle(object):
+    SEMANTIC_VERSIONING_STYLE = 'semantic-versioning'
+    STYLES = [
+        SEMANTIC_VERSIONING_STYLE,
+    ]
+    def __init__(
+        self, version_control_system_adapter,
+        ignore_prefix, style, current_tag, **kargs
+    ):
+        self.version_control_system_adapter = version_control_system_adapter
+        self.ignore_prefix = ignore_prefix
+        self.style = style
+        self.current_tag = current_tag
+        self.suppress_warnings = kargs.get('suppress_warnings', True)
+    def find_current_and_previous_version(self):
+        tags = self.version_control_system_adapter.tags()
+        versions = []
+        for tag in tags:
+            try:
+                versions.append(
+                    semantic_versioning.Version(
+                      tag,
+                      prefix=self.ignore_prefix,
+                    )
+                )
+            except ValueError as e:
+                if not self.suppress_warnings:
+                    warnings.warn(str(e))
+        current_version = None
+        if not self.current_tag:
+            current_version = semantic_versioning.Version.find_latest(
+                versions
+            )
+            if not current_version:
+                raise RuntimeError("No current_version was found")
+        else:
+            current_version = semantic_versioning.Version(
+                self.current_tag,
+                prefix=self.ignore_prefix,
+            )
+            if current_version not in versions:
+                raise ValueError(
+                    "Current version[%s] not exists on repository"
+                    %
+                    current_version
+                )
+        previous_version = current_version.find_previous(versions)
+        current_tag = str(current_version)
+        current_commit = self.version_control_system_adapter.show_commit_from_tag(  # noqa: E501
+            current_tag
+        )
+        previous_tag = None
+        previous_commit = self.version_control_system_adapter.empty_repository_tree_commit  # noqa: E501
+        if previous_version:
+            previous_tag = str(previous_version)
+            previous_commit = self.version_control_system_adapter.show_commit_from_tag(  # noqa: E501
+                previous_tag
+            )
+        return VersionSearcherResult(
+            current_commit=current_commit,
+            previous_commit=previous_commit,
+            current_tag=current_tag,
+            previous_tag=previous_tag,
+        )

convisoappsec/flow/version_searchers/timebased_version_seacher.py ADDED Viewed

@@ -0,0 +1,39 @@
+from .version_searcher_result import VersionSearcherResult
+class TimeBasedVersionSearcher(object):
+    def __init__(self, version_control_system_adapter):
+        self.version_control_system_adapter = version_control_system_adapter
+    def find_current_and_previous_version(self):
+        tags = self.version_control_system_adapter.tags()
+        current_tag = None
+        previous_tag = None
+        tags = tags[:2]
+        if len(tags) >= 2:
+            (current_tag, previous_tag) = tags
+        elif len(tags) == 1:
+            current_tag = tags[0]
+        else:
+            raise Exception("Was not possible find the current tag")
+        current_commit = self.version_control_system_adapter.show_commit_from_tag(  # noqa: E501
+            current_tag
+        )
+        previous_commit = self.version_control_system_adapter.empty_repository_tree_commit  # noqa: E501
+        if previous_tag:
+            previous_commit = self.version_control_system_adapter.show_commit_from_tag(  # noqa: E501
+                previous_tag
+            )
+        return VersionSearcherResult(
+            current_commit=current_commit,
+            previous_commit=previous_commit,
+            current_tag=current_tag,
+            previous_tag=previous_tag,
+        )

convisoappsec/flow/version_searchers/version_searcher_result.py ADDED Viewed

@@ -0,0 +1,33 @@
+class VersionSearcherResult(object):
+    def __init__(self, **karg):
+        self.current_tag = karg.get('current_tag')
+        self.previous_tag = karg.get('previous_tag')
+        self.current_commit = karg.get('current_commit')
+        self.previous_commit = karg.get('previous_commit')
+        if not (self.current_commit and self.previous_commit):
+            raise ValueError(
+                "The values of current_commit and previous_commit are required"
+            )
+    @property
+    def current_version(self):
+        return self.create_version_dict(
+            self.current_commit,
+            self.current_tag,
+        )
+    @property
+    def previous_version(self):
+        return self.create_version_dict(
+            self.previous_commit,
+            self.previous_tag,
+        )
+    @staticmethod
+    def create_version_dict(commit, tag):
+        return {
+            'commit': commit,
+            'tag': tag,
+        }

convisoappsec/flow/versioning_style/__init__.py ADDED Viewed

File without changes

convisoappsec/flow/versioning_style/semantic_versioning.py ADDED Viewed

@@ -0,0 +1,44 @@
+import semantic_version
+import re
+class Version(semantic_version.Version):
+    PREFIXED_VERSION_RE_FMT = '^{prefix}(.+)'
+    def __init__(self, version_string, prefix=None):
+        super().__init__(
+            self.__remove_prefix(prefix, version_string)
+        )
+        self.__version_string = version_string
+    def __str__(self):
+        return self.__version_string
+    @classmethod
+    def __remove_prefix(cls, prefix, version_string):
+        if not prefix:
+            return version_string
+        version_re = cls.PREFIXED_VERSION_RE_FMT.format(
+            prefix=re.escape(prefix)
+        )
+        match = re.match(version_re, version_string)
+        if match:
+            return match.group(1)
+        return version_string
+    def find_previous(self, versions):
+        previous_tags = list(
+            filter(lambda v: v < self, versions)
+        )
+        return self.find_latest(previous_tags)
+    @staticmethod
+    def find_latest(versions):
+        if len(versions) > 0:
+            return max(versions)

convisoappsec/flowcli/__init__.py ADDED Viewed

@@ -0,0 +1,3 @@
+from .help_option import help_option
+__all__ = ['help_option']

convisoappsec/flowcli/__main__.py ADDED Viewed

@@ -0,0 +1,4 @@
+from .entrypoint import cli
+if __name__ == '__main__':
+    cli(prog_name="convisoappsec.flowcli")

convisoappsec/flowcli/assets/__init__.py ADDED Viewed

@@ -0,0 +1,4 @@
+from .entrypoint import assets
+__all__ = ['assets']

convisoappsec/flowcli/assets/create.py ADDED Viewed

@@ -0,0 +1,88 @@
+import click
+import click_log
+from convisoappsec.common.git_data_parser import GitDataParser
+from convisoappsec.flow.graphql_api.v1.models.asset import AssetInput
+from convisoappsec.flowcli import help_option
+from convisoappsec.flowcli.common import on_http_error
+from convisoappsec.flowcli.context import pass_flow_context
+from convisoappsec.logger import LOGGER
+click_log.basic_config(LOGGER)
+def parse_repository_name(repository_dir, asset_name=None):
+    has_user_input = asset_name != None
+    if has_user_input:
+        return asset_name
+    return GitDataParser(repository_dir).parse_name()
+@click.command()
+@click_log.simple_verbosity_option(LOGGER)
+@click.option(
+    "-c",
+    "--company-id",
+    type=int,
+    required=True,
+    help="The Company ID from your organization in Conviso Platform.",
+)
+@click.option(
+    "-r",
+    "--repository-dir",
+    type=click.Path(exists=True, resolve_path=True),
+    default=".",
+    show_default=True,
+    required=True,
+    help="The directory path for the asset.",
+)
+@click.option(
+    "--name",
+    type=str,
+    default=None,
+    show_default=False,
+    required=False,
+    help="Customize the Asset name.",
+)
+@click.option(
+    "--scan-type",
+    type=str,
+    default="None",
+    show_default=True,
+    required=False,
+    help="Customize the Asset scan type.",
+)
+@help_option
+@pass_flow_context
+def create(flow_context, company_id, repository_dir, name, scan_type):
+    try:
+        conviso_api = flow_context.create_conviso_graphql_client()
+        perform_command(conviso_api, company_id, repository_dir, name, scan_type)
+    except Exception as exception:
+        on_http_error(exception)
+        raise click.ClickException(str(exception)) from exception
+def perform_command(
+    conviso_api,
+    company_id,
+    repository_dir,
+    name,
+    scan_type,
+):
+    asset_name = parse_repository_name(repository_dir, name)
+    asset_model = AssetInput(
+        company_id,
+        asset_name,
+        scan_type,
+    )
+    print('Creating new asset to repository: "{}"'.format(repository_dir))
+    asset = conviso_api.assets.create_asset(asset_model)
+    asset_url = conviso_api.assets.get_asset_url(company_id, asset["id"])
+    print("The created Asset is available at Conviso Platform: {}".format(asset_url))

convisoappsec/flowcli/assets/entrypoint.py ADDED Viewed

@@ -0,0 +1,20 @@
+import click
+from convisoappsec.flowcli import help_option
+from .ls import ls
+from .create import create
+@click.group()
+@help_option
+def assets():
+    pass
+assets.add_command(ls)
+assets.add_command(create)
+assets.epilog = '''
+  Run 'conviso assets COMMAND --help' for more information on a command.
+'''

convisoappsec/flowcli/assets/ls.py ADDED Viewed

@@ -0,0 +1,63 @@
+from json import dumps as json_dumps
+import click
+import click_log
+from convisoappsec.flowcli import help_option
+from convisoappsec.flowcli.common import on_http_error
+from convisoappsec.flowcli.context import pass_flow_context
+from convisoappsec.logger import LOGGER
+click_log.basic_config(LOGGER)
+@click.command()
+@click_log.simple_verbosity_option(LOGGER)
+@click.option(
+    '-c',
+    '--company-id',
+    type=int,
+    required=True,
+    help="The company ID to have its resources used.",
+)
+@click.option(
+    '-p',
+    '--page',
+    type=int,
+    default=1,
+    show_default=True,
+    required=False,
+    help="Page to be consulted",
+)
+@click.option(
+    '-l',
+    '--limit',
+    type=int,
+    default=32,
+    show_default=True,
+    required=False,
+    help="Items limit per page.",
+)
+@help_option
+@pass_flow_context
+def ls(flow_context, company_id, asset_name="", page=1, limit=32):
+    try:
+        conviso_api = flow_context.create_conviso_graphql_client()
+        perform_command(conviso_api, company_id, asset_name, page, limit)
+    except Exception as exception:
+        on_http_error(exception)
+        raise click.ClickException(str(exception)) from exception
+def perform_command(conviso_api, company_id, asset_name="", page=1, limit=32):
+    assets_found = conviso_api.assets.get_by_company_id_or_name(
+        company_id,
+        asset_name,
+        page,
+        limit
+    )
+    indented_output = json_dumps(assets_found, indent=2)
+    print(indented_output)

convisoappsec/flowcli/ast/__init__.py ADDED Viewed

@@ -0,0 +1,3 @@
+from .entrypoint import ast
+__all__ = ['ast']