devsecops-engine-tools 1.13.3__py3-none-any.whl → 1.14.0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of devsecops-engine-tools might be problematic. Click here for more details.
- devsecops_engine_tools/engine_core/src/domain/usecases/handle_risk.py +11 -18
- devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py +4 -1
- devsecops_engine_tools/version.py +1 -1
- {devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/METADATA +1 -1
- {devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/RECORD +8 -8
- {devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/WHEEL +0 -0
- {devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/entry_points.txt +0 -0
- {devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/top_level.txt +0 -0
|
@@ -51,9 +51,7 @@ class HandleRisk:
|
|
|
51
51
|
"Error getting finding list in handle risk: {0}".format(str(e))
|
|
52
52
|
)
|
|
53
53
|
|
|
54
|
-
def _filter_engagements(
|
|
55
|
-
self, engagements, service, endings_to_exclude, risk_config
|
|
56
|
-
):
|
|
54
|
+
def _filter_engagements(self, engagements, service, risk_config):
|
|
57
55
|
filtered_engagements = []
|
|
58
56
|
min_word_length = risk_config["HANDLE_SERVICE_NAME"]["MIN_WORD_LENGTH"]
|
|
59
57
|
words = [
|
|
@@ -65,21 +63,22 @@ class HandleRisk:
|
|
|
65
63
|
]
|
|
66
64
|
check_words_regex = risk_config["HANDLE_SERVICE_NAME"]["REGEX_CHECK_WORDS"]
|
|
67
65
|
min_word_amount = risk_config["HANDLE_SERVICE_NAME"]["MIN_WORD_AMOUNT"]
|
|
66
|
+
endings = risk_config["HANDLE_SERVICE_NAME"]["CHECK_ENDING"]
|
|
68
67
|
|
|
69
68
|
for engagement in engagements:
|
|
70
|
-
if service.lower()
|
|
69
|
+
if service.lower() == engagement.name.lower():
|
|
71
70
|
filtered_engagements += [engagement.name]
|
|
72
71
|
elif re.search(check_words_regex, engagement.name.lower()) and (
|
|
73
72
|
sum(1 for word in words if word.lower() in engagement.name.lower())
|
|
74
73
|
>= min_word_amount
|
|
75
74
|
):
|
|
76
75
|
filtered_engagements += [engagement.name]
|
|
77
|
-
|
|
78
|
-
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
|
|
76
|
+
elif endings:
|
|
77
|
+
if any(
|
|
78
|
+
(service.lower() + ending.lower() == engagement.name.lower())
|
|
79
|
+
for ending in endings
|
|
80
|
+
):
|
|
81
|
+
filtered_engagements += [engagement.name]
|
|
83
82
|
|
|
84
83
|
return filtered_engagements
|
|
85
84
|
|
|
@@ -144,16 +143,10 @@ class HandleRisk:
|
|
|
144
143
|
service_list = []
|
|
145
144
|
|
|
146
145
|
if risk_config["HANDLE_SERVICE_NAME"]["ENABLED"].lower() == "true":
|
|
147
|
-
exclusive_endings = risk_config["HANDLE_SERVICE_NAME"]["EXCLUSIVE_ENDING"]
|
|
148
|
-
endings_to_exclude = [
|
|
149
|
-
ending
|
|
150
|
-
for ending in exclusive_endings
|
|
151
|
-
if not pipeline_name.endswith(ending)
|
|
152
|
-
]
|
|
153
146
|
service = next(
|
|
154
147
|
(
|
|
155
148
|
pipeline_name.replace(ending, "")
|
|
156
|
-
for ending in
|
|
149
|
+
for ending in risk_config["HANDLE_SERVICE_NAME"]["CHECK_ENDING"]
|
|
157
150
|
if pipeline_name.endswith(ending)
|
|
158
151
|
),
|
|
159
152
|
pipeline_name,
|
|
@@ -171,7 +164,7 @@ class HandleRisk:
|
|
|
171
164
|
service_code, dict_args, secret_tool, remote_config
|
|
172
165
|
)
|
|
173
166
|
service_list += self._filter_engagements(
|
|
174
|
-
engagements, service,
|
|
167
|
+
engagements, service, risk_config
|
|
175
168
|
)
|
|
176
169
|
|
|
177
170
|
service_list += [service]
|
|
@@ -244,7 +244,10 @@ class BreakBuild:
|
|
|
244
244
|
report.risk_score = round(
|
|
245
245
|
remote_config["WEIGHTS"]["severity"].get(report.severity.lower(), 0)
|
|
246
246
|
+ remote_config["WEIGHTS"]["epss_score"] * report.epss_score
|
|
247
|
-
+
|
|
247
|
+
+ min(
|
|
248
|
+
remote_config["WEIGHTS"]["age"] * report.age,
|
|
249
|
+
remote_config["WEIGHTS"]["max_age"],
|
|
250
|
+
)
|
|
248
251
|
+ sum(
|
|
249
252
|
remote_config["WEIGHTS"]["tags"].get(tag, 0)
|
|
250
253
|
for tag in report.tags
|
|
@@ -1 +1 @@
|
|
|
1
|
-
version = '1.
|
|
1
|
+
version = '1.14.0'
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
2
|
-
devsecops_engine_tools/version.py,sha256=
|
|
2
|
+
devsecops_engine_tools/version.py,sha256=oB3CD-aoOXzQYqOvkxp0DM_gsf5lrHCmWwwlwsT3uDI,19
|
|
3
3
|
devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
4
4
|
devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
5
5
|
devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -26,7 +26,7 @@ devsecops_engine_tools/engine_core/src/domain/model/gateway/secrets_manager_gate
|
|
|
26
26
|
devsecops_engine_tools/engine_core/src/domain/model/gateway/vulnerability_management_gateway.py,sha256=c98JSdYYPyr82VZR4MRy49xSBVxueERbAS1mWwKqV6g,878
|
|
27
27
|
devsecops_engine_tools/engine_core/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
28
28
|
devsecops_engine_tools/engine_core/src/domain/usecases/break_build.py,sha256=JP-i5SFaMN7Yi4uDCe_AE1kJ197g1IJGcwQdq-RYbk4,16198
|
|
29
|
-
devsecops_engine_tools/engine_core/src/domain/usecases/handle_risk.py,sha256=
|
|
29
|
+
devsecops_engine_tools/engine_core/src/domain/usecases/handle_risk.py,sha256=1vctNN5aSPGsSgrldPiYg2Fq86q6Z9DzFdazjWAm2Do,8133
|
|
30
30
|
devsecops_engine_tools/engine_core/src/domain/usecases/handle_scan.py,sha256=yrPQdNvFNDeS4g4UxdxFDj-yw17K_OZ3T-HDEiePknE,7041
|
|
31
31
|
devsecops_engine_tools/engine_core/src/domain/usecases/metrics_manager.py,sha256=Xi0iNnPrFgqd2cBdAA5E_tgouhxs-BTo016aolnGgv8,2413
|
|
32
32
|
devsecops_engine_tools/engine_core/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -73,7 +73,7 @@ devsecops_engine_tools/engine_risk/src/domain/model/gateways/__init__.py,sha256=
|
|
|
73
73
|
devsecops_engine_tools/engine_risk/src/domain/model/gateways/add_epss_gateway.py,sha256=cTm4QSxiaUt7ETCdXWZxKEus8pmEDA3e9k5b39SLDDE,178
|
|
74
74
|
devsecops_engine_tools/engine_risk/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
75
75
|
devsecops_engine_tools/engine_risk/src/domain/usecases/add_data.py,sha256=4wqDj-q7hJfJscvrbMDcy7tONqxdxl-CSl_TWTRUGKA,402
|
|
76
|
-
devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=
|
|
76
|
+
devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=sYcsReL3FF_9_NTEcK-sFCFHK5Hi9zJrMpD4cDLAX4w,11380
|
|
77
77
|
devsecops_engine_tools/engine_risk/src/domain/usecases/get_exclusions.py,sha256=o4vMpmgt5q1BsaWpGZWdCHPVs1CFyj-P3TrgOSEBcqM,2327
|
|
78
78
|
devsecops_engine_tools/engine_risk/src/domain/usecases/handle_filters.py,sha256=w18CVVSs0mkfLYo7f-wZJv1afoPWzEU-IBKUzk7LMYI,832
|
|
79
79
|
devsecops_engine_tools/engine_risk/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -286,8 +286,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
|
|
|
286
286
|
devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
|
|
287
287
|
devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=yNtlT-8Legz1sHbGPH8LNYjL-LgDUE0zXG2rYjiab7U,290
|
|
288
288
|
devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=esLnDBxP9MQBvV8noVohTrdWSVuljTKRpZgrn2kaD_c,192
|
|
289
|
-
devsecops_engine_tools-1.
|
|
290
|
-
devsecops_engine_tools-1.
|
|
291
|
-
devsecops_engine_tools-1.
|
|
292
|
-
devsecops_engine_tools-1.
|
|
293
|
-
devsecops_engine_tools-1.
|
|
289
|
+
devsecops_engine_tools-1.14.0.dist-info/METADATA,sha256=n-afXgS_Ad--GHwm-4ACrBejpCD5-iXKK8ajHfxgjuQ,10854
|
|
290
|
+
devsecops_engine_tools-1.14.0.dist-info/WHEEL,sha256=R0nc6qTxuoLk7ShA2_Y-UWkN8ZdfDBG2B6Eqpz2WXbs,91
|
|
291
|
+
devsecops_engine_tools-1.14.0.dist-info/entry_points.txt,sha256=9IjXF_7Zpgowq_SY6OSmsA9vZze18a8_AeHwkQVrgKk,131
|
|
292
|
+
devsecops_engine_tools-1.14.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
|
|
293
|
+
devsecops_engine_tools-1.14.0.dist-info/RECORD,,
|
|
File without changes
|
{devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/entry_points.txt
RENAMED
|
File without changes
|
{devsecops_engine_tools-1.13.3.dist-info → devsecops_engine_tools-1.14.0.dist-info}/top_level.txt
RENAMED
|
File without changes
|