devsecops-engine-tools 1.44.0__py3-none-any.whl → 1.45.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of devsecops-engine-tools might be problematic. Click here for more details.

Files changed (10) hide show
  1. devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py +1 -0
  2. devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py +1 -0
  3. devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py +1 -1
  4. devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py +26 -13
  5. devsecops_engine_tools/version.py +1 -1
  6. {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/METADATA +1 -1
  7. {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/RECORD +10 -10
  8. {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/WHEEL +0 -0
  9. {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/entry_points.txt +0 -0
  10. {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/top_level.txt +0 -0
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py CHANGED
@@ -99,6 +99,7 @@ class AzureDevops(DevopsPlatformGateway):
99
99
  "target_branch": SystemVariables.System_TargetBranchName,
100
100
  "source_branch": SystemVariables.System_SourceBranch,
101
101
  "repository_provider": BuildVariables.Build_Repository_Provider,
102
+ "pull_request_id": SystemVariables.System_PullRequestId,
102
103
  "vm_product_type_name": VMVariables.Vm_Product_Type_Name,
103
104
  "vm_product_name": VMVariables.Vm_Product_Name,
104
105
  "vm_product_description": VMVariables.Vm_Product_Description,
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py CHANGED
@@ -89,6 +89,7 @@ class GithubActions(DevopsPlatformGateway):
89
89
  "target_branch": SystemVariables.github_event_base_ref,
90
90
  "source_branch": SystemVariables.github_ref,
91
91
  "repository_provider": BuildVariables.GitHub,
92
+ "pull_request_id": SystemVariables.github_event_number,
92
93
  "vm_product_type_name": VMVariables.Vm_Product_Type_Name,
93
94
  "vm_product_name": VMVariables.Vm_Product_Name,
94
95
  "vm_product_description": VMVariables.Vm_Product_Description,
devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py CHANGED
@@ -123,7 +123,7 @@ class BreakBuild:
123
123
  def _remediation_rate_control(
124
124
  self, all_report: "list[Report]", new_report_list: "list[Report]"
125
125
  ):
126
- sp.init_printing(use_unicode=True)
126
+ sp.init_printing(use_unicode=True, num_columns=100)
127
127
  (
128
128
  remediation_rate_name,
129
129
  mitigated_name,
devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py CHANGED
@@ -115,18 +115,35 @@ class ReportSonar:
115
115
  )[0]
116
116
  filtered_findings = self.sonar_gateway.filter_by_sonarqube_tag(findings)
117
117
 
118
+ sonar_vulns_params = {
119
+ "componentKeys": project_key,
120
+ "types": "VULNERABILITY",
121
+ "ps": 500,
122
+ "p": 1,
123
+ "s": "CREATION_DATE",
124
+ "asc": "false"
125
+ }
126
+ sonar_hotspots_params = {
127
+ "projectKey": project_key,
128
+ "ps": 100,
129
+ "p": 1,
130
+ }
131
+
132
+ if report_config_tool["USE_BRANCH_PARAMETER"] and pipeline_name not in report_config_tool["USE_PULL_REQUEST_PARAMETER"]:
133
+ sonar_vulns_params["branch"] = branch
134
+ sonar_hotspots_params["branch"] = branch
135
+ else:
136
+ try:
137
+ pull_request_id = int(self.devops_platform_gateway.get_variable("pull_request_id"))
138
+ sonar_vulns_params["pullRequest"] = pull_request_id
139
+ sonar_hotspots_params["pullRequest"] = pull_request_id
140
+ except Exception as e: pass
141
+
118
142
  sonar_vulnerabilities = self.sonar_gateway.get_findings(
119
143
  args["sonar_url"],
120
144
  secret["token_sonar"],
121
145
  "/api/issues/search",
122
- {
123
- "componentKeys": project_key,
124
- "types": "VULNERABILITY",
125
- "ps": 500,
126
- "p": 1,
127
- "s": "CREATION_DATE",
128
- "asc": "false"
129
- },
146
+ sonar_vulns_params,
130
147
  "issues",
131
148
  report_config_tool["MAX_RETRIES_QUERY_SONAR"]
132
149
  )
@@ -134,11 +151,7 @@ class ReportSonar:
134
151
  args["sonar_url"],
135
152
  secret["token_sonar"],
136
153
  "/api/hotspots/search",
137
- {
138
- "projectKey": project_key,
139
- "ps": 100,
140
- "p": 1,
141
- },
154
+ sonar_hotspots_params,
142
155
  "hotspots",
143
156
  report_config_tool["MAX_RETRIES_QUERY_SONAR"]
144
157
  )
devsecops_engine_tools/version.py CHANGED
@@ -1 +1 @@
1
- version = '1.44.0'
1
+ version = '1.45.0'
{devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/METADATA RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: devsecops-engine-tools
3
- Version: 1.44.0
3
+ Version: 1.45.0
4
4
  Summary: Tool for DevSecOps strategy
5
5
  Home-page: https://github.com/bancolombia/devsecops-engine-tools
6
6
  Author: Bancolombia DevSecOps Team
{devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.0.dist-info}/RECORD RENAMED
@@ -1,5 +1,5 @@
1
1
  devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
2
- devsecops_engine_tools/version.py,sha256=wS3RHs8gSUSbjEyCqrz_WglPyvNGJoNxlUU3ajViqAA,19
2
+ devsecops_engine_tools/version.py,sha256=jSo_A7lRtMhzeKsVkLn5ddmL9ngVPNHQBOVE-AjIj_8,19
3
3
  devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
4
4
  devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
5
5
  devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -36,11 +36,11 @@ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/__init
36
36
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/s3_manager.py,sha256=xLPwfh8FQzP5CldRj0ev8LsSxFO4A_i88EnNGBPuN2g,2210
37
37
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/secrets_manager.py,sha256=ELihQBgSPH4f9QCyg2dgjudsFitaqgdsljnVOmaA_v4,1972
38
38
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
39
- devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=lNjYo83p3lovwfW4BeBtHQZckZl9m-9jlcIB-DesqhY,5316
39
+ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=KNztWjE5IIhLnuT9HWDbpm1WFZFYUVr-0hiGFqZpSmA,5389
40
40
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
41
41
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py,sha256=ptzqoY7BkNO4jlna7Uw30mreKZfspwBRqEZMAbhRka4,29969
42
42
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
43
- devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py,sha256=RbZS__LXeeztxumSKZ0aqmkQwKL39q1xdkJDVV_QSMU,4148
43
+ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py,sha256=jK3Qtt0UfSX4wbE4wo4iY7a8v8u1pcQcWASWmJ7sFfk,4216
44
44
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_pretty_table/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
45
45
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_pretty_table/printer_pretty_table.py,sha256=NkXu7JYoCHXIx0HzHl4DhdLGEpocPMIqs2L0ADS-RcI,5369
46
46
  devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_rich_table/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -101,7 +101,7 @@ devsecops_engine_tools/engine_risk/src/domain/model/gateways/__init__.py,sha256=
101
101
  devsecops_engine_tools/engine_risk/src/domain/model/gateways/add_epss_gateway.py,sha256=cTm4QSxiaUt7ETCdXWZxKEus8pmEDA3e9k5b39SLDDE,178
102
102
  devsecops_engine_tools/engine_risk/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
103
103
  devsecops_engine_tools/engine_risk/src/domain/usecases/add_data.py,sha256=4wqDj-q7hJfJscvrbMDcy7tONqxdxl-CSl_TWTRUGKA,402
104
- devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=iSZOvwfyJgjIkOmDMa_kBWMxLbnXkgdlfogM4mtftVM,15000
104
+ devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=AgBM6p730v7alb_Um-av7K_aHGywkxhQJ6441lh5U6Y,15017
105
105
  devsecops_engine_tools/engine_risk/src/domain/usecases/check_threshold.py,sha256=VYdmcbAuNNvdHCegRfvza7YJ8FHbFNyDosrKJrMW93I,765
106
106
  devsecops_engine_tools/engine_risk/src/domain/usecases/get_exclusions.py,sha256=1UNNq_Yhg3R78jLRSKcMNQYe8T8gl1C31C0ttBF0OAk,3992
107
107
  devsecops_engine_tools/engine_risk/src/domain/usecases/handle_filters.py,sha256=R53fnuIQYfr7YbpMz1BGPJ1d5z9jY_Hnm7EmPt99wlE,3608
@@ -327,7 +327,7 @@ devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/__init__.py,s
327
327
  devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/gateways/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
328
328
  devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/gateways/sonar_gateway.py,sha256=mgycD3bzC_BYv7qT0tMLAro9hyNOvi4gJRzceYNF0t8,1339
329
329
  devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
330
- devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py,sha256=c8GwlcR6NvLV1vuIAdXb4yAmsxdgHptH0HSCRWmW57g,9495
330
+ devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py,sha256=3ZPfGEdIIk1AuG164V8NC355UhvmG6arZyq8e-HbYcQ,10185
331
331
  devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
332
332
  devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
333
333
  devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/sonarqube/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -347,8 +347,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
347
347
  devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
348
348
  devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
349
349
  devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=XFap4yOK7ItLWsqbwDhvLd7NpDhs7i-UGJAMD6jjd7w,6687
350
- devsecops_engine_tools-1.44.0.dist-info/METADATA,sha256=Zp1Pg2NcHomo3IzO2kFaC3pD3xXUMN2j8fU5knU7qKA,11779
351
- devsecops_engine_tools-1.44.0.dist-info/WHEEL,sha256=R0nc6qTxuoLk7ShA2_Y-UWkN8ZdfDBG2B6Eqpz2WXbs,91
352
- devsecops_engine_tools-1.44.0.dist-info/entry_points.txt,sha256=MHCTFFs9bdNKo6YcWCcBW2_8X6yTisgLOlmVx-V8Rxc,276
353
- devsecops_engine_tools-1.44.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
354
- devsecops_engine_tools-1.44.0.dist-info/RECORD,,
350
+ devsecops_engine_tools-1.45.0.dist-info/METADATA,sha256=bHzyodvymz0y_jSKip7C2x-aB7swtR1LHO6BKWqM85w,11779
351
+ devsecops_engine_tools-1.45.0.dist-info/WHEEL,sha256=R0nc6qTxuoLk7ShA2_Y-UWkN8ZdfDBG2B6Eqpz2WXbs,91
352
+ devsecops_engine_tools-1.45.0.dist-info/entry_points.txt,sha256=MHCTFFs9bdNKo6YcWCcBW2_8X6yTisgLOlmVx-V8Rxc,276
353
+ devsecops_engine_tools-1.45.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
354
+ devsecops_engine_tools-1.45.0.dist-info/RECORD,,