devsecops-engine-tools 1.44.0__py3-none-any.whl → 1.45.1__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of devsecops-engine-tools might be problematic. Click here for more details.
- devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py +1 -0
- devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py +1 -0
- devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py +1 -1
- devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/docker/docker_images.py +4 -1
- devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py +26 -13
- devsecops_engine_tools/version.py +1 -1
- {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/METADATA +1 -1
- {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/RECORD +11 -11
- {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/WHEEL +0 -0
- {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/entry_points.txt +0 -0
- {devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/top_level.txt +0 -0
|
@@ -99,6 +99,7 @@ class AzureDevops(DevopsPlatformGateway):
|
|
|
99
99
|
"target_branch": SystemVariables.System_TargetBranchName,
|
|
100
100
|
"source_branch": SystemVariables.System_SourceBranch,
|
|
101
101
|
"repository_provider": BuildVariables.Build_Repository_Provider,
|
|
102
|
+
"pull_request_id": SystemVariables.System_PullRequestId,
|
|
102
103
|
"vm_product_type_name": VMVariables.Vm_Product_Type_Name,
|
|
103
104
|
"vm_product_name": VMVariables.Vm_Product_Name,
|
|
104
105
|
"vm_product_description": VMVariables.Vm_Product_Description,
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py
CHANGED
|
@@ -89,6 +89,7 @@ class GithubActions(DevopsPlatformGateway):
|
|
|
89
89
|
"target_branch": SystemVariables.github_event_base_ref,
|
|
90
90
|
"source_branch": SystemVariables.github_ref,
|
|
91
91
|
"repository_provider": BuildVariables.GitHub,
|
|
92
|
+
"pull_request_id": SystemVariables.github_event_number,
|
|
92
93
|
"vm_product_type_name": VMVariables.Vm_Product_Type_Name,
|
|
93
94
|
"vm_product_name": VMVariables.Vm_Product_Name,
|
|
94
95
|
"vm_product_description": VMVariables.Vm_Product_Description,
|
|
@@ -123,7 +123,7 @@ class BreakBuild:
|
|
|
123
123
|
def _remediation_rate_control(
|
|
124
124
|
self, all_report: "list[Report]", new_report_list: "list[Report]"
|
|
125
125
|
):
|
|
126
|
-
sp.init_printing(use_unicode=True)
|
|
126
|
+
sp.init_printing(use_unicode=True, num_columns=100)
|
|
127
127
|
(
|
|
128
128
|
remediation_rate_name,
|
|
129
129
|
mitigated_name,
|
|
@@ -74,6 +74,8 @@ class DockerImages(ImagesGateway):
|
|
|
74
74
|
|
|
75
75
|
def extract_base_image_from_labels(self, labels, matching_image=None):
|
|
76
76
|
try:
|
|
77
|
+
if labels.get("repository") == 'evc/uso_especifico':
|
|
78
|
+
return None
|
|
77
79
|
source_image = labels.get("x86.image.name") or labels.get(
|
|
78
80
|
"image.base.ref.name"
|
|
79
81
|
)
|
|
@@ -109,7 +111,8 @@ class DockerImages(ImagesGateway):
|
|
|
109
111
|
|
|
110
112
|
def validate_date(self, date, referenced_date):
|
|
111
113
|
if not date:
|
|
112
|
-
|
|
114
|
+
logger.error("Cannot validate date: Invalid or missing date.")
|
|
115
|
+
return False
|
|
113
116
|
|
|
114
117
|
reference_date = self.parse_date(referenced_date)
|
|
115
118
|
if not reference_date:
|
|
@@ -115,18 +115,35 @@ class ReportSonar:
|
|
|
115
115
|
)[0]
|
|
116
116
|
filtered_findings = self.sonar_gateway.filter_by_sonarqube_tag(findings)
|
|
117
117
|
|
|
118
|
+
sonar_vulns_params = {
|
|
119
|
+
"componentKeys": project_key,
|
|
120
|
+
"types": "VULNERABILITY",
|
|
121
|
+
"ps": 500,
|
|
122
|
+
"p": 1,
|
|
123
|
+
"s": "CREATION_DATE",
|
|
124
|
+
"asc": "false"
|
|
125
|
+
}
|
|
126
|
+
sonar_hotspots_params = {
|
|
127
|
+
"projectKey": project_key,
|
|
128
|
+
"ps": 100,
|
|
129
|
+
"p": 1,
|
|
130
|
+
}
|
|
131
|
+
|
|
132
|
+
if report_config_tool["USE_BRANCH_PARAMETER"] and pipeline_name not in report_config_tool["USE_PULL_REQUEST_PARAMETER"]:
|
|
133
|
+
sonar_vulns_params["branch"] = branch
|
|
134
|
+
sonar_hotspots_params["branch"] = branch
|
|
135
|
+
else:
|
|
136
|
+
try:
|
|
137
|
+
pull_request_id = int(self.devops_platform_gateway.get_variable("pull_request_id"))
|
|
138
|
+
sonar_vulns_params["pullRequest"] = pull_request_id
|
|
139
|
+
sonar_hotspots_params["pullRequest"] = pull_request_id
|
|
140
|
+
except Exception as e: pass
|
|
141
|
+
|
|
118
142
|
sonar_vulnerabilities = self.sonar_gateway.get_findings(
|
|
119
143
|
args["sonar_url"],
|
|
120
144
|
secret["token_sonar"],
|
|
121
145
|
"/api/issues/search",
|
|
122
|
-
|
|
123
|
-
"componentKeys": project_key,
|
|
124
|
-
"types": "VULNERABILITY",
|
|
125
|
-
"ps": 500,
|
|
126
|
-
"p": 1,
|
|
127
|
-
"s": "CREATION_DATE",
|
|
128
|
-
"asc": "false"
|
|
129
|
-
},
|
|
146
|
+
sonar_vulns_params,
|
|
130
147
|
"issues",
|
|
131
148
|
report_config_tool["MAX_RETRIES_QUERY_SONAR"]
|
|
132
149
|
)
|
|
@@ -134,11 +151,7 @@ class ReportSonar:
|
|
|
134
151
|
args["sonar_url"],
|
|
135
152
|
secret["token_sonar"],
|
|
136
153
|
"/api/hotspots/search",
|
|
137
|
-
|
|
138
|
-
"projectKey": project_key,
|
|
139
|
-
"ps": 100,
|
|
140
|
-
"p": 1,
|
|
141
|
-
},
|
|
154
|
+
sonar_hotspots_params,
|
|
142
155
|
"hotspots",
|
|
143
156
|
report_config_tool["MAX_RETRIES_QUERY_SONAR"]
|
|
144
157
|
)
|
|
@@ -1 +1 @@
|
|
|
1
|
-
version = '1.
|
|
1
|
+
version = '1.45.1'
|
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
2
|
-
devsecops_engine_tools/version.py,sha256=
|
|
2
|
+
devsecops_engine_tools/version.py,sha256=Z57gtp7hcxxamXKeuwtVM8WjA5LfJYzYZzFFtB4qnAo,19
|
|
3
3
|
devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
4
4
|
devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
5
5
|
devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -36,11 +36,11 @@ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/__init
|
|
|
36
36
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/s3_manager.py,sha256=xLPwfh8FQzP5CldRj0ev8LsSxFO4A_i88EnNGBPuN2g,2210
|
|
37
37
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/secrets_manager.py,sha256=ELihQBgSPH4f9QCyg2dgjudsFitaqgdsljnVOmaA_v4,1972
|
|
38
38
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
39
|
-
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=
|
|
39
|
+
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=KNztWjE5IIhLnuT9HWDbpm1WFZFYUVr-0hiGFqZpSmA,5389
|
|
40
40
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
41
41
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py,sha256=ptzqoY7BkNO4jlna7Uw30mreKZfspwBRqEZMAbhRka4,29969
|
|
42
42
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
43
|
-
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py,sha256=
|
|
43
|
+
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/github_actions.py,sha256=jK3Qtt0UfSX4wbE4wo4iY7a8v8u1pcQcWASWmJ7sFfk,4216
|
|
44
44
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_pretty_table/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
45
45
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_pretty_table/printer_pretty_table.py,sha256=NkXu7JYoCHXIx0HzHl4DhdLGEpocPMIqs2L0ADS-RcI,5369
|
|
46
46
|
devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_rich_table/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -101,7 +101,7 @@ devsecops_engine_tools/engine_risk/src/domain/model/gateways/__init__.py,sha256=
|
|
|
101
101
|
devsecops_engine_tools/engine_risk/src/domain/model/gateways/add_epss_gateway.py,sha256=cTm4QSxiaUt7ETCdXWZxKEus8pmEDA3e9k5b39SLDDE,178
|
|
102
102
|
devsecops_engine_tools/engine_risk/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
103
103
|
devsecops_engine_tools/engine_risk/src/domain/usecases/add_data.py,sha256=4wqDj-q7hJfJscvrbMDcy7tONqxdxl-CSl_TWTRUGKA,402
|
|
104
|
-
devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=
|
|
104
|
+
devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=AgBM6p730v7alb_Um-av7K_aHGywkxhQJ6441lh5U6Y,15017
|
|
105
105
|
devsecops_engine_tools/engine_risk/src/domain/usecases/check_threshold.py,sha256=VYdmcbAuNNvdHCegRfvza7YJ8FHbFNyDosrKJrMW93I,765
|
|
106
106
|
devsecops_engine_tools/engine_risk/src/domain/usecases/get_exclusions.py,sha256=1UNNq_Yhg3R78jLRSKcMNQYe8T8gl1C31C0ttBF0OAk,3992
|
|
107
107
|
devsecops_engine_tools/engine_risk/src/domain/usecases/handle_filters.py,sha256=R53fnuIQYfr7YbpMz1BGPJ1d5z9jY_Hnm7EmPt99wlE,3608
|
|
@@ -207,7 +207,7 @@ devsecops_engine_tools/engine_sca/engine_container/src/domain/usecases/set_input
|
|
|
207
207
|
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
208
208
|
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
209
209
|
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/docker/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
210
|
-
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/docker/docker_images.py,sha256=
|
|
210
|
+
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/docker/docker_images.py,sha256=JqgWwb2PoJRqWE-bFJvsCuGd1WPzyc8PHJbKtdWW_S4,4731
|
|
211
211
|
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
212
212
|
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/prisma_cloud_manager_scan.py,sha256=tf33YFYB47th4Zu0WtWpsrAm5I6_xCON4yOwFacTQLA,6758
|
|
213
213
|
devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/prisma_deserialize_output.py,sha256=oK0NKuPODm38qDgQjf6w40lfNG6NFJS43p5k44wDoMA,2562
|
|
@@ -327,7 +327,7 @@ devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/__init__.py,s
|
|
|
327
327
|
devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/gateways/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
328
328
|
devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/gateways/sonar_gateway.py,sha256=mgycD3bzC_BYv7qT0tMLAro9hyNOvi4gJRzceYNF0t8,1339
|
|
329
329
|
devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
330
|
-
devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py,sha256=
|
|
330
|
+
devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py,sha256=3ZPfGEdIIk1AuG164V8NC355UhvmG6arZyq8e-HbYcQ,10185
|
|
331
331
|
devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
332
332
|
devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
333
333
|
devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/sonarqube/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
|
|
@@ -347,8 +347,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
|
|
|
347
347
|
devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
|
|
348
348
|
devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
|
|
349
349
|
devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=XFap4yOK7ItLWsqbwDhvLd7NpDhs7i-UGJAMD6jjd7w,6687
|
|
350
|
-
devsecops_engine_tools-1.
|
|
351
|
-
devsecops_engine_tools-1.
|
|
352
|
-
devsecops_engine_tools-1.
|
|
353
|
-
devsecops_engine_tools-1.
|
|
354
|
-
devsecops_engine_tools-1.
|
|
350
|
+
devsecops_engine_tools-1.45.1.dist-info/METADATA,sha256=F0iTpz3FI8WumFi_SNe6S6QxgbmSqQxxqWJ_lqxpsO8,11779
|
|
351
|
+
devsecops_engine_tools-1.45.1.dist-info/WHEEL,sha256=R0nc6qTxuoLk7ShA2_Y-UWkN8ZdfDBG2B6Eqpz2WXbs,91
|
|
352
|
+
devsecops_engine_tools-1.45.1.dist-info/entry_points.txt,sha256=MHCTFFs9bdNKo6YcWCcBW2_8X6yTisgLOlmVx-V8Rxc,276
|
|
353
|
+
devsecops_engine_tools-1.45.1.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
|
|
354
|
+
devsecops_engine_tools-1.45.1.dist-info/RECORD,,
|
|
File without changes
|
{devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/entry_points.txt
RENAMED
|
File without changes
|
{devsecops_engine_tools-1.44.0.dist-info → devsecops_engine_tools-1.45.1.dist-info}/top_level.txt
RENAMED
|
File without changes
|