devsecops-engine-tools 1.111.0__py3-none-any.whl → 1.113.0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of devsecops-engine-tools might be problematic. Click here for more details.
- devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py +1 -1
- devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/cdxgen.py +8 -2
- devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py +2 -0
- devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/helpers/file_generator_tool.py +1 -1
- devsecops_engine_tools/version.py +1 -1
- {devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/METADATA +1 -1
- {devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/RECORD +10 -10
- {devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/WHEEL +0 -0
- {devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/entry_points.txt +0 -0
- {devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/top_level.txt +0 -0
|
@@ -147,7 +147,7 @@ def get_inputs_from_cli(args):
|
|
|
147
147
|
parser.add_argument(
|
|
148
148
|
"-p",
|
|
149
149
|
"--platform",
|
|
150
|
-
type=parse_choices({"all", "docker", "k8s", "cloudformation", "openapi", "terraform"}),
|
|
150
|
+
type=parse_choices({"all", "docker", "k8s", "cloudformation", "openapi", "terraform","serverless"}),
|
|
151
151
|
required=False,
|
|
152
152
|
default="all",
|
|
153
153
|
help="Platform to scan, applies only to the engine_iac tool and it is possible to select several {all, docker, k8s, cloudformation, openapi, terraform}",
|
|
@@ -30,6 +30,7 @@ class CdxGen(SbomManagerGateway):
|
|
|
30
30
|
exclude_types = config["CDXGEN"].get("EXCLUDE_TYPES", [])
|
|
31
31
|
exclude_paths = config["CDXGEN"].get("EXCLUDE_PATHS", [])
|
|
32
32
|
recurse = config["CDXGEN"].get("RECURSE", True)
|
|
33
|
+
install_deps = config["CDXGEN"].get("INSTALL_DEPENDENCIES", True)
|
|
33
34
|
debug_pipelines = config["CDXGEN"].get("DEBUG_PIPELINES", [])
|
|
34
35
|
|
|
35
36
|
enable_debug = service_name in debug_pipelines if debug_pipelines else False
|
|
@@ -62,13 +63,13 @@ class CdxGen(SbomManagerGateway):
|
|
|
62
63
|
logger.warning(f"{os_platform} is not supported.")
|
|
63
64
|
return None
|
|
64
65
|
|
|
65
|
-
result_sbom = self._run_cdxgen(command_prefix, artifact, service_name, exclude_types, exclude_paths, recurse, enable_debug)
|
|
66
|
+
result_sbom = self._run_cdxgen(command_prefix, artifact, service_name, exclude_types, exclude_paths, recurse, install_deps, enable_debug)
|
|
66
67
|
return get_list_component(result_sbom, config["CDXGEN"]["OUTPUT_FORMAT"])
|
|
67
68
|
except Exception as e:
|
|
68
69
|
logger.error(f"Error generating SBOM: {e}")
|
|
69
70
|
return None
|
|
70
71
|
|
|
71
|
-
def _run_cdxgen(self, command_prefix, artifact, service_name, exclude_types, exclude_paths, recurse, enable_debug=False):
|
|
72
|
+
def _run_cdxgen(self, command_prefix, artifact, service_name, exclude_types, exclude_paths, recurse, install_deps, enable_debug=False):
|
|
72
73
|
result_file = f"{service_name}_SBOM.json"
|
|
73
74
|
command = [
|
|
74
75
|
command_prefix,
|
|
@@ -93,6 +94,11 @@ class CdxGen(SbomManagerGateway):
|
|
|
93
94
|
command.append(
|
|
94
95
|
"--no-recurse"
|
|
95
96
|
)
|
|
97
|
+
|
|
98
|
+
if not install_deps:
|
|
99
|
+
command.append(
|
|
100
|
+
"--install-deps false"
|
|
101
|
+
)
|
|
96
102
|
|
|
97
103
|
try:
|
|
98
104
|
result = subprocess.run(
|
|
@@ -41,6 +41,7 @@ class CheckovTool(ToolGateway):
|
|
|
41
41
|
"RULES_CLOUDFORMATION": "cloudformation",
|
|
42
42
|
"RULES_OPENAPI": "openapi",
|
|
43
43
|
"RULES_TERRAFORM": "terraform",
|
|
44
|
+
"RULES_SERVERLESS": "serverless",
|
|
44
45
|
}
|
|
45
46
|
framework_external_checks = [
|
|
46
47
|
"RULES_K8S",
|
|
@@ -48,6 +49,7 @@ class CheckovTool(ToolGateway):
|
|
|
48
49
|
"RULES_DOCKER",
|
|
49
50
|
"RULES_OPENAPI",
|
|
50
51
|
"RULES_TERRAFORM",
|
|
52
|
+
"RULES_SERVERLESS",
|
|
51
53
|
]
|
|
52
54
|
|
|
53
55
|
def run_tool(
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/helpers/file_generator_tool.py
CHANGED
|
@@ -38,7 +38,7 @@ def generate_file_from_tool(tool, result_list, rules_doc, config_tool):
|
|
|
38
38
|
|
|
39
39
|
file_name = "results.json"
|
|
40
40
|
results_data = {
|
|
41
|
-
"check_type": "Dockerfile, Kubernetes and
|
|
41
|
+
"check_type": "Dockerfile, Kubernetes, CloudFormation and Serverless",
|
|
42
42
|
"results": {
|
|
43
43
|
"failed_checks": all_failed_checks,
|
|
44
44
|
},
|
|
@@ -1 +1 @@
|
|
|
1
|
-
version = '1.
|
|
1
|
+
version = '1.113.0'
|
{devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/RECORD
RENAMED
|
@@ -1,9 +1,9 @@
|
|
|
1
1
|
devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
2
|
-
devsecops_engine_tools/version.py,sha256=
|
|
2
|
+
devsecops_engine_tools/version.py,sha256=JUmv4gu6jR2ySLeP8UClez_O3A41DU5pGXAul0rRELw,20
|
|
3
3
|
devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
4
4
|
devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
5
5
|
devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
6
|
-
devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py,sha256=
|
|
6
|
+
devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py,sha256=SZwFPlpNNlfQTDZiDgB1Vy4qY323aSjFh5p0RTeVEvs,11343
|
|
7
7
|
devsecops_engine_tools/engine_core/src/deployment/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
8
8
|
devsecops_engine_tools/engine_core/src/deployment/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
9
9
|
devsecops_engine_tools/engine_core/src/domain/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -38,7 +38,7 @@ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/secret
|
|
|
38
38
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
39
39
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=bbzonI501EUTM77uDZpvWeGqJoOaYq45Rw4dWpsTozY,6300
|
|
40
40
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
41
|
-
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/cdxgen.py,sha256=
|
|
41
|
+
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/cdxgen.py,sha256=RMTnn8PCaAdbrcayPn0ZbTUkDZWFi3A1AIvQokiKmHg,6075
|
|
42
42
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
43
43
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py,sha256=GXz-xBxptaZsQU8sR9OTcDAvdIygXmiLfmMIWhlC-hs,33105
|
|
44
44
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -168,7 +168,7 @@ devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters
|
|
|
168
168
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
169
169
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_config.py,sha256=TctUDUvNsErWQ7B41eYCJ0REzGTSyMXJl19mFu33Lv4,5245
|
|
170
170
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_deserealizator.py,sha256=KOZKHSNwwVyUl9OMiNysaq8b0L_q1XB93lYTVj247Nk,1940
|
|
171
|
-
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py,sha256=
|
|
171
|
+
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py,sha256=KYaSOVPtE2nNDxN0UwdPhUUOJFJtvCW_WGa02V9eIDo,16496
|
|
172
172
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
173
173
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_deserealizator.py,sha256=hUc5Rl92Bq9UltXSbyWRWIa_2HDSd1oPBctAkeXcQKE,2147
|
|
174
174
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_tool.py,sha256=lmHY1b2YYQ3YqUobNoZBlPu1UnRZIaqDZudThzUpTvo,10556
|
|
@@ -178,7 +178,7 @@ devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters
|
|
|
178
178
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
179
179
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/entry_points/entry_point_tool.py,sha256=zSyIZFMofd07Tsxy0BphpRnKQebHT0MdURWx7TI_G0M,365
|
|
180
180
|
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/helpers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
181
|
-
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/helpers/file_generator_tool.py,sha256=
|
|
181
|
+
devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/helpers/file_generator_tool.py,sha256=TRoPJC0bkqifZWo72q0vucJWA6egakrCct65kbJD70U,3355
|
|
182
182
|
devsecops_engine_tools/engine_sast/engine_secret/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
183
183
|
devsecops_engine_tools/engine_sast/engine_secret/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
184
184
|
devsecops_engine_tools/engine_sast/engine_secret/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -383,8 +383,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
|
|
|
383
383
|
devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
|
|
384
384
|
devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
|
|
385
385
|
devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=HCjS900TBoNcHrC4LaiP-Kf9frVdtagF130qOUgnO2M,6757
|
|
386
|
-
devsecops_engine_tools-1.
|
|
387
|
-
devsecops_engine_tools-1.
|
|
388
|
-
devsecops_engine_tools-1.
|
|
389
|
-
devsecops_engine_tools-1.
|
|
390
|
-
devsecops_engine_tools-1.
|
|
386
|
+
devsecops_engine_tools-1.113.0.dist-info/METADATA,sha256=21ztT8S_jJfntLFoaVRZ6Lc_xEcWH-Jh7wIomzJKpoU,3233
|
|
387
|
+
devsecops_engine_tools-1.113.0.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
|
|
388
|
+
devsecops_engine_tools-1.113.0.dist-info/entry_points.txt,sha256=OWAww5aBsGeMv0kWhSgVNB0ySKKpYuJd4dly0ikFPkc,283
|
|
389
|
+
devsecops_engine_tools-1.113.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
|
|
390
|
+
devsecops_engine_tools-1.113.0.dist-info/RECORD,,
|
|
File without changes
|
|
File without changes
|
{devsecops_engine_tools-1.111.0.dist-info → devsecops_engine_tools-1.113.0.dist-info}/top_level.txt
RENAMED
|
File without changes
|