cycode 2.0.1.dev4__tar.gz → 2.1.1__tar.gz

{cycode-2.0.1.dev4 → cycode-2.1.1}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: cycode
-Version: 2.0.1.dev4
+Version: 2.1.1
 Summary: Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning.
 Home-page: https://github.com/cycodehq/cycode-cli
 License: MIT

cycode-2.1.1/cycode/__init__.py

@@ -0,0 +1 @@
+__version__ = '2.1.1'  # DON'T TOUCH. Placeholder. Will be filled automatically on poetry build from Git Tag

{cycode-2.0.1.dev4 → cycode-2.1.1}/cycode/cli/commands/scan/code_scanner.py

@@ -627,7 +627,10 @@ def get_document_detections(
 
 
 def exclude_irrelevant_document_detections(
-    document_detections_list: List[DocumentDetections], scan_type: str, command_scan_type: str, severity_threshold: str
+    document_detections_list: List[DocumentDetections],
+    scan_type: str,
+    command_scan_type: str,
+    severity_threshold: str,
 ) -> List[DocumentDetections]:
     relevant_document_detections_list = []
     for document_detections in document_detections_list:
@@ -717,9 +720,6 @@ def exclude_irrelevant_detections(
 
 
 def _exclude_detections_by_severity(detections: List[Detection], severity_threshold: str) -> List[Detection]:
-    if severity_threshold is None:
-        return detections
-
     relevant_detections = []
     for detection in detections:
         severity = detection.detection_details.get('advisory_severity')

{cycode-2.0.1.dev4 → cycode-2.1.1}/cycode/cli/commands/scan/scan_command.py

@@ -65,7 +65,7 @@ from cycode.cli.utils.get_api_client import get_scan_cycode_client
 )
 @click.option(
     '--severity-threshold',
-    default=None,
+    default=Severity.INFO.name,
     help='Show violations only for the specified level or higher.',
     type=click.Choice([e.name for e in Severity]),
     required=False,

{cycode-2.0.1.dev4 → cycode-2.1.1}/cycode/cli/models.py

@@ -33,6 +33,9 @@ class DocumentDetections:
         return 'document:{0}, detections:{1}'.format(self.document, self.detections)
 
 
+SEVERITY_UNKNOWN_WEIGHT = -2
+
+
 class Severity(Enum):
     INFO = -1
     LOW = 0
@@ -42,7 +45,7 @@ class Severity(Enum):
     CRITICAL = 3
 
     @staticmethod
-    def try_get_value(name: str) -> any:
+    def try_get_value(name: str) -> Optional[int]:
         name = name.upper()
         if name not in Severity.__members__:
             return None
@@ -50,10 +53,11 @@ class Severity(Enum):
         return Severity[name].value
 
     @staticmethod
-    def get_member_weight(name: str) -> any:
+    def get_member_weight(name: str) -> int:
         weight = Severity.try_get_value(name)
-        if weight is None:  # if License Compliance
-            return -2
+        if weight is None:  # unknown severity
+            return SEVERITY_UNKNOWN_WEIGHT
+
         return weight
 
 

{cycode-2.0.1.dev4 → cycode-2.1.1}/cycode/cli/printers/tables/sca_table_printer.py

@@ -4,7 +4,7 @@ from typing import TYPE_CHECKING, Dict, List
 import click
 
 from cycode.cli.consts import LICENSE_COMPLIANCE_POLICY_ID, PACKAGE_VULNERABILITY_POLICY_ID
-from cycode.cli.models import Detection, Severity
+from cycode.cli.models import SEVERITY_UNKNOWN_WEIGHT, Detection, Severity
 from cycode.cli.printers.tables.table import Table
 from cycode.cli.printers.tables.table_models import ColumnInfoBuilder, ColumnWidths
 from cycode.cli.printers.tables.table_printer_base import TablePrinterBase
@@ -73,7 +73,10 @@ class ScaTablePrinter(TablePrinterBase):
     @staticmethod
     def __severity_sort_key(detection: Detection) -> int:
         severity = detection.detection_details.get('advisory_severity')
-        return Severity.get_member_weight(severity)
+        if severity:
+            return Severity.get_member_weight(severity)
+
+        return SEVERITY_UNKNOWN_WEIGHT
 
     def _sort_detections_by_severity(self, detections: List[Detection]) -> List[Detection]:
         return sorted(detections, key=self.__severity_sort_key, reverse=True)

{cycode-2.0.1.dev4 → cycode-2.1.1}/pyproject.toml

@@ -1,6 +1,6 @@
 [tool.poetry]
 name = "cycode"
-version = "2.0.1.dev4" # DON'T TOUCH. Placeholder. Will be filled automatically on poetry build from Git Tag
+version = "2.1.1" # DON'T TOUCH. Placeholder. Will be filled automatically on poetry build from Git Tag
 description = "Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning."
 keywords=["secret-scan", "cycode", "devops", "token", "secret", "security", "cycode", "code"]
 authors = ["Cycode <support@cycode.com>"]

cycode-2.0.1.dev4/cycode/__init__.py

@@ -1 +0,0 @@
-__version__ = '2.0.1.dev4'  # DON'T TOUCH. Placeholder. Will be filled automatically on poetry build from Git Tag