devsecops-engine-tools 1.114.3__py3-none-any.whl → 1.115.1__py3-none-any.whl

devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py

@@ -306,6 +306,12 @@ class CheckovTool(ToolGateway):
         threads = []
         rules_run = {}
         
+        # Incluir reglas adicionales para serverless si se especifica en la configuración SERVERLESS_ADITIONAL_CHECKS
+        ADDITIONAL_CHECKS = config_tool[self.TOOL_CHECKOV].get("SERVERLESS_ADITIONAL_CHECKS", [])
+        if any(p.lower() in ["serverless", "all"] for p in platform_to_scan) and ADDITIONAL_CHECKS:
+            for additional_check_type in ADDITIONAL_CHECKS:
+                config_tool[self.TOOL_CHECKOV]["RULES"]["RULES_SERVERLESS"].update(config_tool[self.TOOL_CHECKOV]["RULES"][additional_check_type])
+                
         # Configurar LOG_LEVEL si está definido
         log_level = config_tool[self.TOOL_CHECKOV].get("LOG_LEVEL")
         if log_level:

devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/finding.py

@@ -2,101 +2,101 @@ from marshmallow import Schema, fields, validate
 
 
 class FindingSerializer(Schema):
-    active = fields.Bool(requeride=False)
-    component_name = fields.Str(requeride=False)
-    component_version = fields.Str(requeride=False)
-    created = fields.Str(requeride=False)
-    epss_score: fields.Int(requeride=False)
-    epss_percentile: fields.Int(requeride=False)
-    cvssv3 = fields.Str(requeride=False)
-    cvssv3_score = fields.Int(requeride=False)
-    cwe = fields.List(fields.Int, requeride=False)
-    date = fields.Str(requeride=False)
-    defect_review_requested_by = fields.List(fields.Int, requerided=False)
-    description = fields.Str(requeride=False)
-    duplicate = fields.Bool(requerided=False)
-    duplicate_finding = fields.Int(requerided=False)
-    dynamic_finding = fields.Bool(requerided=False)
-    effort_for_fixing = fields.Str(requerided=False)
-    endpoints = fields.List(fields.Int, requerided=False)
-    false_p = fields.Bool(requerided=False)
-    file_path = fields.Str(requeride=False)
-    finding_group = fields.List(fields.Number, requerided=False)
-    found_by = fields.List(fields.Int, requerided=False)
-    has_jira = fields.Bool(requerided=False)
-    has_tags = fields.Bool(requerided=False)
-    hash_code = fields.Str(requeride=False)
-    id = fields.List(fields.List(fields.Field()), requerided=False)
-    impact = fields.Str(requeride=False)
-    inherited_tags = fields.List(fields.List(fields.Field()), requeride=False)
-    is_mitigated = fields.Bool(requerided=False)
-    jira_change = fields.Str(requeride=False)
-    jira_creation = fields.Str(requeride=False)
-    last_reviewed = fields.Str(requeride=False)
-    last_reviewed_by = fields.List(fields.Int, requeried=False)
-    limit = fields.Int(requerided=False)
-    mitigated = fields.Str(requeride=False)
-    mitigated_by = fields.List(fields.Int, requerided=False)
-    mitigation = fields.Str(requeride=False)
-    nb_occurences = fields.List(fields.Int, requeride=False)
-    not_tag = fields.Str(requeride=False)
-    not_tags = fields.List(fields.Str, requerided=False)
-    not_test__engagement__product__tags = fields.List(fields.Str, requerided=False)
-    not_test__engagement__tags = fields.List(fields.Str, requerided=False)
-    not_test__tags = fields.List(fields.Str, requerided=False)
-    numerical_severity = fields.Str(requeride=False)
-    offset = fields.Int(requerided=False)
-    out_of_scope = fields.Bool(requerided=False)
-    outside_of_sla = fields.Int(requerided=False)
-    param = fields.Str(requeride=False)
-    payload = fields.Str(requeride=False)
-    planned_remediation_date = fields.Str(requeride=False)
-    planned_remediation_version = fields.Str(requeride=False)
-    prefetch = fields.List(fields.Str, requerided=False)
-    product_name = fields.Str(requeride=False)
-    product_name_contains = fields.Str(requeride=False)
-    publish_date = fields.Str(requeride=False)
-    references = fields.Str(requeride=False)
-    related_fields = fields.Str(requeride=False)
-    reporter = fields.List(fields.Int, requerided=False)
-    review_request_by = fields.List(fields.Int, requerided=False)
-    reviewers = fields.List(fields.Int, requerided=False)
-    risk_accetance = fields.Int(requerided=False)
+    active = fields.Bool(required=False)
+    component_name = fields.Str(required=False)
+    component_version = fields.Str(required=False)
+    created = fields.Str(required=False)
+    epss_score = fields.Int(required=False)
+    epss_percentile = fields.Int(required=False)
+    cvssv3 = fields.Str(required=False)
+    cvssv3_score = fields.Int(required=False)
+    cwe = fields.List(fields.Int, required=False)
+    date = fields.Str(required=False)
+    defect_review_requested_by = fields.List(fields.Int, required=False)
+    description = fields.Str(required=False)
+    duplicate = fields.Bool(required=False)
+    duplicate_finding = fields.Int(required=False)
+    dynamic_finding = fields.Bool(required=False)
+    effort_for_fixing = fields.Str(required=False)
+    endpoints = fields.List(fields.Int, required=False)
+    false_p = fields.Bool(required=False)
+    file_path = fields.Str(required=False)
+    finding_group = fields.List(fields.Number, required=False)
+    found_by = fields.List(fields.Int, required=False)
+    has_jira = fields.Bool(required=False)
+    has_tags = fields.Bool(required=False)
+    hash_code = fields.Str(required=False)
+    id = fields.List(fields.List(fields.Field()), required=False)
+    impact = fields.Str(required=False)
+    inherited_tags = fields.List(fields.List(fields.Field()), required=False)
+    is_mitigated = fields.Bool(required=False)
+    jira_change = fields.Str(required=False)
+    jira_creation = fields.Str(required=False)
+    last_reviewed = fields.Str(required=False)
+    last_reviewed_by = fields.List(fields.Int, required=False)
+    limit = fields.Int(required=False)
+    mitigated = fields.Str(required=False)
+    mitigated_by = fields.List(fields.Int, required=False)
+    mitigation = fields.Str(required=False)
+    nb_occurences = fields.List(fields.Int, required=False)
+    not_tag = fields.Str(required=False)
+    not_tags = fields.List(fields.Str, required=False)
+    not_test__engagement__product__tags = fields.List(fields.Str, required=False)
+    not_test__engagement__tags = fields.List(fields.Str, required=False)
+    not_test__tags = fields.List(fields.Str, required=False)
+    numerical_severity = fields.Str(required=False)
+    offset = fields.Int(required=False)
+    out_of_scope = fields.Bool(required=False)
+    outside_of_sla = fields.Int(required=False)
+    param = fields.Str(required=False)
+    payload = fields.Str(required=False)
+    planned_remediation_date = fields.Str(required=False)
+    planned_remediation_version = fields.Str(required=False)
+    prefetch = fields.List(fields.Str, required=False)
+    product_name = fields.Str(required=False)
+    product_name_contains = fields.Str(required=False)
+    publish_date = fields.Str(required=False)
+    references = fields.Str(required=False)
+    related_fields = fields.Str(required=False)
+    reporter = fields.List(fields.Int, required=False)
+    review_request_by = fields.List(fields.Int, required=False)
+    reviewers = fields.List(fields.Int, required=False)
+    risk_accetance = fields.Int(required=False)
     risk_status = fields.Str(
         required=False, validate=validate.OneOf(["Risk Pending", "Risk Rejected", "Risk Expired", "Risk Accepted", "Risk Active", "Transfer Pending", "Transfer Rejected", "Transfer Expired", "Transfer Accepted", "On Whitelist", "On Blacklist"])
     )
-    risk_accepted = fields.Bool(requerided=False)
-    sast_sink_object = fields.Str(requeride=False)
-    sast_source_object = fields.Str(requeride=False)
-    scanner_confidence = fields.List(fields.Int, requerided=False)
-    service = fields.Str(requeride=False)
-    severity = fields.Str(requeride=False)
-    severity_justification = fields.Str(requeride=False)
-    sla_start_date = fields.Str(requeride=False)
-    sonarqube_issue = fields.List(fields.Int, requerided=False)
-    static_finding = fields.Bool(requerided=False)
-    steps_to_reproduce = fields.Str(requeride=False)
-    tag = fields.Str(requeride=False)
-    tags = fields.Str(requeride=False)
-    test = fields.Int(requerided=False)
-    test__engagement = fields.List(fields.Int, requerided=False)
-    test__engagement__product = fields.List(fields.Int, requerided=False)
-    test__engagement__product__prod_type = fields.List(fields.Int, requerided=False)
-    test__engagement__product__tags = fields.List(fields.Int, requerided=False)
-    test__engagement__tags = fields.List(fields.Str, requerided=False)
-    test__tags = fields.List(fields.Str, requerided=False)
-    test__test_type = fields.List(fields.Int, requerided=False)
-    title = fields.Str(requeride=False)
-    under_defect_review = fields.Bool(requerided=False)
-    under_review = fields.Bool(requerided=False)
-    unique_id_from_tool = fields.Str(requeride=False)
-    verified = fields.Bool(requerided=False)
-    vuln_id_from_tool = fields.Str(requeride=False)
-    vulnerability_id = fields.Str(requeride=False)
+    risk_accepted = fields.Bool(required=False)
+    sast_sink_object = fields.Str(required=False)
+    sast_source_object = fields.Str(required=False)
+    scanner_confidence = fields.List(fields.Int, required=False)
+    service = fields.Str(required=False)
+    severity = fields.Str(required=False)
+    severity_justification = fields.Str(required=False)
+    sla_start_date = fields.Str(required=False)
+    sonarqube_issue = fields.List(fields.Int, required=False)
+    static_finding = fields.Bool(required=False)
+    steps_to_reproduce = fields.Str(required=False)
+    tag = fields.Str(required=False)
+    tags = fields.Str(required=False)
+    test = fields.Int(required=False)
+    test__engagement = fields.List(fields.Int, required=False)
+    test__engagement__product = fields.List(fields.Int, required=False)
+    test__engagement__product__prod_type = fields.List(fields.Int, required=False)
+    test__engagement__product__tags = fields.List(fields.Int, required=False)
+    test__engagement__tags = fields.List(fields.Str, required=False)
+    test__tags = fields.List(fields.Str, required=False)
+    test__test_type = fields.List(fields.Int, required=False)
+    title = fields.Str(required=False)
+    under_defect_review = fields.Bool(required=False)
+    under_review = fields.Bool(required=False)
+    unique_id_from_tool = fields.Str(required=False)
+    verified = fields.Bool(required=False)
+    vuln_id_from_tool = fields.Str(required=False)
+    vulnerability_id = fields.Str(required=False)
 
 
 class FindingCloseSerializer(Schema):
-    is_mitigated = fields.Bool(default=True, requerided=False)
-    mitigated = fields.Bool(requerided=False)
+    is_mitigated = fields.Bool(required=False)
+    mitigated = fields.Bool(required=False)
     detail = fields.Str(required=False)
     message = fields.Str(required=False)

devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/import_scan.py

@@ -207,7 +207,7 @@ class ImportScanSerializer(Schema):
     tool_scm_configuration = fields.Int(required=False)
     code_app = fields.Str(required=False)
     # defect-dojo credential
-    generate_auth_cmdb = fields.Bool(required=False, default=False)
+    generate_auth_cmdb = fields.Bool(required=False)
     auth_cmdb_request_response = fields.Dict(required=False)
     token_cmdb = fields.Str(required=False)
     host_cmdb = fields.Url(required=False)
@@ -225,7 +225,7 @@ class ImportScanSerializer(Schema):
     project_remote_config = fields.Str(required=False)
     # regulare expression
     expression = fields.Str(required=True)
-    reimport_scan = fields.Bool(required=False, default=False)
+    reimport_scan = fields.Bool(required=False)
 
     @post_load
     def make_cmdb(self, data, **kwargs):

devsecops_engine_tools/version.py

@@ -1 +1 @@
-version = '1.114.3'
+version = '1.115.1'

{devsecops_engine_tools-1.114.3.dist-info → devsecops_engine_tools-1.115.1.dist-info}/METADATA

@@ -1,6 +1,6 @@
-Metadata-Version: 2.1
+Metadata-Version: 2.4
 Name: devsecops-engine-tools
-Version: 1.114.3
+Version: 1.115.1
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team
@@ -10,31 +10,40 @@ Classifier: License :: OSI Approved :: GNU Affero General Public License v3 or l
 Classifier: Operating System :: OS Independent
 Requires-Python: >=3.9
 Description-Content-Type: text/markdown
-Requires-Dist: requests==2.32.4
-Requires-Dist: PyYAML==6.0.2
-Requires-Dist: pyfiglet==0.8.post1
-Requires-Dist: prettytable==3.10.2
+Requires-Dist: requests==2.32.5
+Requires-Dist: PyYAML==6.0.3
+Requires-Dist: pyfiglet==1.0.4
+Requires-Dist: prettytable==3.16.0
 Requires-Dist: azure-devops==7.1.0b4
-Requires-Dist: marshmallow==3.21.3
-Requires-Dist: pytz==2024.1
+Requires-Dist: marshmallow==4.0.1
+Requires-Dist: pytz==2025.2
 Requires-Dist: python-decouple==3.8
-Requires-Dist: requests-toolbelt==1.0.0
+Requires-Dist: requests_toolbelt==1.0.0
 Requires-Dist: pexpect==4.9.0
-Requires-Dist: PyGithub==2.3.0
+Requires-Dist: PyGithub==2.8.1
 Requires-Dist: distro==1.9.0
-Requires-Dist: boto3==1.34.157
+Requires-Dist: boto3==1.35.49
 Requires-Dist: docker==7.1.0
-Requires-Dist: setuptools==75.3.2
-Requires-Dist: rich==13.9.4
+Requires-Dist: setuptools==78.1.1
+Requires-Dist: rich==14.1.0
 Requires-Dist: cpe==1.3.1
-Requires-Dist: packageurl-python==0.15.6
-Requires-Dist: ruamel.yaml==0.18.6
-Requires-Dist: Authlib==1.3.2
-Requires-Dist: PyJWT==2.9.0
-Requires-Dist: sympy==1.13.3
-Requires-Dist: urllib3<2.0.0
-Requires-Dist: holidays==0.58
+Requires-Dist: packageurl-python==0.13.4
+Requires-Dist: ruamel.yaml==0.18.15
+Requires-Dist: Authlib==1.6.4
+Requires-Dist: PyJWT==2.10.1
+Requires-Dist: sympy==1.14.0
+Requires-Dist: urllib3==1.26.20
+Requires-Dist: holidays==0.81
 Requires-Dist: pyarrow==21.0.0
+Dynamic: author
+Dynamic: author-email
+Dynamic: classifier
+Dynamic: description
+Dynamic: description-content-type
+Dynamic: home-page
+Dynamic: requires-dist
+Dynamic: requires-python
+Dynamic: summary
 
 # DevSecOps Engine Tools
 

{devsecops_engine_tools-1.114.3.dist-info → devsecops_engine_tools-1.115.1.dist-info}/RECORD

@@ -1,5 +1,5 @@
 devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/version.py,sha256=MHBeUFpOWQiMqVSxLu6VZYUTFQ2q1ctBV1h2xhNnJpg,20
+devsecops_engine_tools/version.py,sha256=kzH917wpZdKH8UUxk89ZdlBUctv8hnspjgge94k18cM,20
 devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -168,7 +168,7 @@ devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_config.py,sha256=TctUDUvNsErWQ7B41eYCJ0REzGTSyMXJl19mFu33Lv4,5245
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_deserealizator.py,sha256=oDvMC4M9jWU4q-kbq798hWeQc45oX8cXyzYl5jo-hsw,2034
-devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py,sha256=5r0eFp4xcpwcpTHHBpwWlOU8lbK4NHityCAyj9OoQsY,16765
+devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py,sha256=xyQfY5LZYz0dVYYqadqhg9pwZDxKUoKt5A3UkjLmkt0,17306
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_deserealizator.py,sha256=hUc5Rl92Bq9UltXSbyWRWIa_2HDSd1oPBctAkeXcQKE,2147
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_tool.py,sha256=lmHY1b2YYQ3YqUobNoZBlPu1UnRZIaqDZudThzUpTvo,10556
@@ -309,8 +309,8 @@ devsecops_engine_tools/engine_utilities/defect_dojo/domain/request_objects/__ini
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/request_objects/finding.py,sha256=RinG3ISc-u_3VXVqntwdcQvZoQdmHPCvDHWSvnkCkcU,2619
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/request_objects/import_scan.py,sha256=n-fvv5QzqGzOqZs1ScbjvhVSycz7STet4GR2JWCJWe4,5317
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/finding.py,sha256=4IQLjqgyImVdn8AxoU3UKgXnvU-F-x7Tm2bJdp6nHm4,5265
-devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/import_scan.py,sha256=XYhtsDaxPb_-cS-BTgOX22eOmXY1T8FjqZTcrS5ISqA,7676
+devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/finding.py,sha256=xD1KwGEZOpBDvaVSVfUL_Y0RkcLg-y2tp7YUgKMhJsk,5119
+devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/import_scan.py,sha256=lje1dW3s3UJocsTGslJqk8uA_tNsxc8zlU2VHz6YqYA,7646
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/cmdb.py,sha256=n4971S8KDbwR3jMgWFK-CTDrRb5ll7hzr3a4CEoqRX0,2625
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/component.py,sha256=_icc-ZAqw-aVgE5J4VH8Q7fSqpCgEGcfmurgRIN9NqM,448
@@ -383,8 +383,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
 devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
 devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
 devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=HCjS900TBoNcHrC4LaiP-Kf9frVdtagF130qOUgnO2M,6757
-devsecops_engine_tools-1.114.3.dist-info/METADATA,sha256=NfLzfg8ht0nWEQmV_c1xSwNi-sa35GSN7lanpNR2M4U,3233
-devsecops_engine_tools-1.114.3.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
-devsecops_engine_tools-1.114.3.dist-info/entry_points.txt,sha256=OWAww5aBsGeMv0kWhSgVNB0ySKKpYuJd4dly0ikFPkc,283
-devsecops_engine_tools-1.114.3.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
-devsecops_engine_tools-1.114.3.dist-info/RECORD,,
+devsecops_engine_tools-1.115.1.dist-info/METADATA,sha256=QEPvXuzaALUwHc9AbWxEGAjCq7pWLS1uPOa_28M3-Kk,3429
+devsecops_engine_tools-1.115.1.dist-info/WHEEL,sha256=lTU6B6eIfYoiQJTZNc-fyaR6BpL6ehTzU3xGYxn2n8k,91
+devsecops_engine_tools-1.115.1.dist-info/entry_points.txt,sha256=OWAww5aBsGeMv0kWhSgVNB0ySKKpYuJd4dly0ikFPkc,283
+devsecops_engine_tools-1.115.1.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
+devsecops_engine_tools-1.115.1.dist-info/RECORD,,

{devsecops_engine_tools-1.114.3.dist-info → devsecops_engine_tools-1.115.1.dist-info}/WHEEL

@@ -1,5 +1,5 @@
 Wheel-Version: 1.0
-Generator: setuptools (75.3.2)
+Generator: setuptools (78.1.1)
 Root-Is-Purelib: true
 Tag: py3-none-any