devsecops-engine-tools 1.7.1__py3-none-any.whl → 1.7.3__py3-none-any.whl

devsecops_engine_tools/engine_sast/engine_secret/src/domain/usecases/secret_scan.py

@@ -59,7 +59,7 @@ class SecretScan:
                     self.devops_platform_gateway.get_variable("repository")
                     ),
                 self.devops_platform_gateway.get_variable("os"),
-                self.devops_platform_gateway.get_variable("path_directory")
+                self.devops_platform_gateway.get_variable("work_folder")
                 )
         return finding_list, config_tool
     

devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_deserealizator.py

@@ -11,11 +11,11 @@ class SecretScanDeserealizator(DeseralizatorGateway):
     def get_list_vulnerability(self, results_scan_list: List[dict], os, path_directory) -> List[Finding]:
         list_open_vulnerabilities = []
         for result in results_scan_list:
-            where_text, line = self.get_where_correctly(result, os, path_directory)
+            where_text, line, raw = self.get_where_correctly(result, os, path_directory)
             vulnerability_open = Finding(
                 id="SECRET_SCANNING",
                 cvss=None,
-                where=f"{where_text}, Line: {line}",
+                where=f"{where_text}, Line: {line}, Secret: {raw}",
                 description="Sensitive information in source code",
                 severity="critical",
                 identification_date=datetime.now().strftime("%d%m%Y"),
@@ -29,11 +29,12 @@ class SecretScanDeserealizator(DeseralizatorGateway):
         return list_open_vulnerabilities
     
     def get_where_correctly(self, result: dict, os, path_directory):
-        line = str(result.get("SourceMetadata").get("Data").get("Filesystem").get("line") or "Multiline")
+        line = str(result.get("SourceMetadata").get("Data").get("Filesystem").get("line") + 1 or "Multiline")
         original_where = str(result.get("SourceMetadata").get("Data").get("Filesystem").get("file"))
+        raw = str(result.get("Raw"))
         if re.search(r'Linux', os):
             original_where = original_where.replace("\\", "/")
         
         path_remove = path_directory or ""
         where_text = original_where.replace(path_remove, "")
-        return where_text, line
+        return where_text, line, raw

devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/prisma_deserialize_output.py

@@ -31,9 +31,8 @@ class PrismaDeserealizator(DeseralizatorGateway):
                 image_object = file.read()
 
                 json_data = json.loads(image_object)
-
-                vulnerabilities_data = json_data["results"][0]["vulnerabilities"]
-
+                vulnerabilities_data = json_data["results"][0]["vulnerabilities"] if "vulnerabilities" in json_data["results"][0] else []
+                
                 # Create a list of findings instances from the JSON data
                 vulnerabilities = [
                     Finding(

devsecops_engine_tools/version.py

@@ -1 +1 @@
-version = '1.7.1'
+version = '1.7.3'

{devsecops_engine_tools-1.7.1.dist-info → devsecops_engine_tools-1.7.3.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: devsecops-engine-tools
-Version: 1.7.1
+Version: 1.7.3
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team

{devsecops_engine_tools-1.7.1.dist-info → devsecops_engine_tools-1.7.3.dist-info}/RECORD

@@ -1,5 +1,5 @@
 devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/version.py,sha256=qPmI-qPztOQrKxaIV5UQTvb7k4V7J8zC7M2tLqXN0w0,17
+devsecops_engine_tools/version.py,sha256=UHqEAHY-ttVnJEFOzoluHzMxMQRbjou7FukFI-qrUaM,17
 devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -94,14 +94,14 @@ devsecops_engine_tools/engine_sast/engine_secret/src/domain/model/gateway/gatewa
 devsecops_engine_tools/engine_sast/engine_secret/src/domain/model/gateway/git_gateway.py,sha256=x6LFK8wZuVix-ZCBdBQTzvjQi59nZYVrSOTatCOQbxc,638
 devsecops_engine_tools/engine_sast/engine_secret/src/domain/model/gateway/tool_gateway.py,sha256=juharYjy__KyB0fFCbU30k_aLd_9cQgsoCMeodq9ebA,593
 devsecops_engine_tools/engine_sast/engine_secret/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_sast/engine_secret/src/domain/usecases/secret_scan.py,sha256=G7il4gbySM1wHRdHdQcpCoZF4-cosw3iRi3cWNjx5p8,3624
+devsecops_engine_tools/engine_sast/engine_secret/src/domain/usecases/secret_scan.py,sha256=AppRyQD1vTkK46BPTLc6mCqGp9gE4YA0fxkg_pPoR2U,3621
 devsecops_engine_tools/engine_sast/engine_secret/src/domain/usecases/set_input_core.py,sha256=AR8bVAyrWEwyeJEJwXCQlsZKZMb790918OJPpxkmwyA,2747
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/git_cli/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/git_cli/git_run.py,sha256=xKIUAnNK4u0pTHgo5tFrzmnquBegBQgN2-3jU6V6vxQ,2642
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_deserealizator.py,sha256=ZO7NU3oYVojjo2yY-NErbcZRmODSvqf3xBgMRkj8VDk,1895
+devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_deserealizator.py,sha256=OJMxvIN7H3wuReuQ2A0HmCWYl3tb8MmZgjapWfw4p9k,1962
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_run.py,sha256=BYbYBdC_DWWxpaxoLWXYdIHiKXDbUJ_zOyExt0coJwA,4544
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/entry_points/entry_point_tool.py,sha256=cSCDXXDptaIDeBn-u9y_j5UbtjEY3AYK1zNXyKi9Ilw,693
@@ -128,7 +128,7 @@ devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_ada
 devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/docker/docker_images.py,sha256=gnDC8wnG99D3p6K_ph2a9bMtoYGu_5BdGacVOD8swH8,815
 devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/prisma_cloud_manager_scan.py,sha256=J92AIpPzIwAO37RFRN7H9x-9QLWatpL7v7bbGadRY6c,4532
-devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/prisma_deserialize_output.py,sha256=0xMhB-pr55eat1xtAMsW06JC8EdP3_Q77Fvg505EE-Y,2379
+devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/prisma_cloud/prisma_deserialize_output.py,sha256=InUFpFj1LO_rY_8oiKaAXUZ3NP_uASL1wofyd7WPLeQ,2450
 devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/trivy_tool/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/trivy_tool/trivy_deserialize_output.py,sha256=U5FFZsJCCADpH0-VbweeRqZi0aVM8RQqIijv17BWnY0,2114
 devsecops_engine_tools/engine_sca/engine_container/src/infrastructure/driven_adapters/trivy_tool/trivy_manager_scan.py,sha256=IBd3fOQmHPDeVud54DQtw0x2o4jm31iwRoiBDTpkqdc,4284
@@ -224,8 +224,8 @@ devsecops_engine_tools/engine_utilities/utils/logger_info.py,sha256=4Mz8Bwlm9Mku
 devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGaxYSDe0ZRh6VHRf53H4sXPcb-vNP_i81PUn3I,307
 devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=GAslbWaBpwP3mP6fBsgVl07TTBgcCggQTy8h2M9ibeo,612
 devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=yNtlT-8Legz1sHbGPH8LNYjL-LgDUE0zXG2rYjiab7U,290
-devsecops_engine_tools-1.7.1.dist-info/METADATA,sha256=w_Yc11w0t0_4NjttnQh-C3RI0kdKMcEV3I5qHvap7r0,9926
-devsecops_engine_tools-1.7.1.dist-info/WHEEL,sha256=GJ7t_kWBFywbagK5eo9IoUwLW6oyOeTKmQ-9iHFVNxQ,92
-devsecops_engine_tools-1.7.1.dist-info/entry_points.txt,sha256=9IjXF_7Zpgowq_SY6OSmsA9vZze18a8_AeHwkQVrgKk,131
-devsecops_engine_tools-1.7.1.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
-devsecops_engine_tools-1.7.1.dist-info/RECORD,,
+devsecops_engine_tools-1.7.3.dist-info/METADATA,sha256=mbPeCnkSCuZdd4ikXOdHUxWrkodbXv2mldDZWTnTQKA,9926
+devsecops_engine_tools-1.7.3.dist-info/WHEEL,sha256=GJ7t_kWBFywbagK5eo9IoUwLW6oyOeTKmQ-9iHFVNxQ,92
+devsecops_engine_tools-1.7.3.dist-info/entry_points.txt,sha256=9IjXF_7Zpgowq_SY6OSmsA9vZze18a8_AeHwkQVrgKk,131
+devsecops_engine_tools-1.7.3.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
+devsecops_engine_tools-1.7.3.dist-info/RECORD,,