devsecops-engine-tools 1.7.31__tar.gz → 1.7.33__tar.gz

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: devsecops-engine-tools
-Version: 1.7.31
+Version: 1.7.33
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team
@@ -64,7 +64,7 @@ pip3 install devsecops-engine-tools
 ### Scan running - flags (CLI)
 
 ```bash
-devsecops-engine-tools --platform_devops ["local","azure","github"] --remote_config_repo ["remote_config_repo"] --tool ["engine_iac", "engine_dast", "engine_secret", "engine_dependencies", "engine_container"] --folder_path ["Folder path scan engine_iac"] --platform ["k8s","cloudformation","docker", "openapi"] --use_secrets_manager ["false", "true"] --use_vulnerability_management ["false", "true"] --send_metrics ["false", "true"] --token_cmdb ["token_cmdb"] --token_vulnerability_management ["token_vulnerability_management"] --token_engine_container ["token_engine_container"] --token_engine_dependencies ["token_engine_dependencies"] 
+devsecops-engine-tools --platform_devops ["local","azure","github"] --remote_config_repo ["remote_config_repo"] --tool ["engine_iac", "engine_dast", "engine_secret", "engine_dependencies", "engine_container"] --folder_path ["Folder path scan engine_iac"] --platform ["k8s","cloudformation","docker", "openapi"] --use_secrets_manager ["false", "true"] --use_vulnerability_management ["false", "true"] --send_metrics ["false", "true"] --token_cmdb ["token_cmdb"] --token_vulnerability_management ["token_vulnerability_management"] --token_engine_container ["token_engine_container"] --token_engine_dependencies ["token_engine_dependencies"] --xray_mode ["scan", "audit"]
 ```
 
 ### Structure Remote Config

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py

@@ -31,26 +31,48 @@ from devsecops_engine_tools.version import version
 
 logger = MyLogger.__call__(**settings.SETTING_LOGGER).get_logger()
 
+
 def parse_separated_list(value, choices):
-    values = value.split(',')
+    values = value.split(",")
     # Validar cada elemento de la lista
     for val in values:
         if val not in choices:
-            raise argparse.ArgumentTypeError(f"Invalid value: {val}. Valid values are: {', '.join(choices)}")
-    
+            raise argparse.ArgumentTypeError(
+                f"Invalid value: {val}. Valid values are: {', '.join(choices)}"
+            )
+
     return values
 
+
 def parse_choices(choices):
     def parse_with_choices(value):
         return parse_separated_list(value, choices)
+
     return parse_with_choices
 
+
 def get_inputs_from_cli(args):
     parser = argparse.ArgumentParser()
-    parser.add_argument("-v", "--version", action='version', version='{version}'.format(version=version))
-    parser.add_argument("-pd", "--platform_devops", choices=["azure", "github", "local"], type=str, required=True, help="Platform where is executed")
-    parser.add_argument("-rcf" ,"--remote_config_repo", type=str, required=True, help="Name or Folder Path of Config Repo")
-    parser.add_argument("-t",
+    parser.add_argument(
+        "-v", "--version", action="version", version="{version}".format(version=version)
+    )
+    parser.add_argument(
+        "-pd",
+        "--platform_devops",
+        choices=["azure", "github", "local"],
+        type=str,
+        required=True,
+        help="Platform where is executed",
+    )
+    parser.add_argument(
+        "-rcf",
+        "--remote_config_repo",
+        type=str,
+        required=True,
+        help="Name or Folder Path of Config Repo",
+    )
+    parser.add_argument(
+        "-t",
         "--tool",
         choices=[
             "engine_iac",
@@ -64,9 +86,20 @@ def get_inputs_from_cli(args):
         required=True,
         help="Tool to execute",
     )
-    parser.add_argument("-fp", "--folder_path", type=str, required=False, help="Folder Path to scan, only apply engine_iac tool")
-    parser.add_argument("-p",
-        "--platform", type=parse_choices({"all", "docker", "k8s", "cloudformation", "openapi"}), required=False, default="all" ,help="Platform to scan, only apply engine_iac tool"
+    parser.add_argument(
+        "-fp",
+        "--folder_path",
+        type=str,
+        required=False,
+        help="Folder Path to scan, only apply engine_iac and engine_dependencies tools",
+    )
+    parser.add_argument(
+        "-p",
+        "--platform",
+        type=parse_choices({"all", "docker", "k8s", "cloudformation", "openapi"}),
+        required=False,
+        default="all",
+        help="Platform to scan, only apply engine_iac tool",
     )
     parser.add_argument(
         "--use_secrets_manager",
@@ -89,10 +122,31 @@ def get_inputs_from_cli(args):
         required=False,
         help="Enable or Disable the send metrics to the driven adapter metrics",
     )
-    parser.add_argument("--token_cmdb", required=False, help="Token to connect to the CMDB")
-    parser.add_argument("--token_vulnerability_management", required=False, help="Token to connect to the Vulnerability Management")
-    parser.add_argument("--token_engine_container", required=False, help="Token to execute engine_container if is necessary")
-    parser.add_argument("--token_engine_dependencies", required=False, help="Token to execute engine_dependencies if is necessary. If using xray as engine_dependencies tool, the token is the base64 of artifactory server config.")
+    parser.add_argument(
+        "--token_cmdb", required=False, help="Token to connect to the CMDB"
+    )
+    parser.add_argument(
+        "--token_vulnerability_management",
+        required=False,
+        help="Token to connect to the Vulnerability Management",
+    )
+    parser.add_argument(
+        "--token_engine_container",
+        required=False,
+        help="Token to execute engine_container if is necessary",
+    )
+    parser.add_argument(
+        "--token_engine_dependencies",
+        required=False,
+        help="Token to execute engine_dependencies if is necessary. If using xray as engine_dependencies tool, the token is the base64 of artifactory server config that can be obtain from jfrog cli with 'jf config export <ServerID>' command.",
+    )
+    parser.add_argument(
+        "--xray_mode",
+        choices=["scan", "audit"],
+        required=False,
+        default="scan",
+        help="Mode to execute xray, only apply engine_dependencies xray tool",
+    )
     args = parser.parse_args()
     return {
         "platform_devops": args.platform_devops,
@@ -107,8 +161,10 @@ def get_inputs_from_cli(args):
         "token_vulnerability_management": args.token_vulnerability_management,
         "token_engine_container": args.token_engine_container,
         "token_engine_dependencies": args.token_engine_dependencies,
+        "xray_mode": args.xray_mode,
     }
 
+
 def application_core():
     try:
         # Get inputs from CLI
@@ -120,18 +176,18 @@ def application_core():
         devops_platform_gateway = {
             "azure": AzureDevops(),
             "github": GithubActions(),
-            "local": RuntimeLocal()
+            "local": RuntimeLocal(),
         }.get(args["platform_devops"])
         printer_table_gateway = PrinterPrettyTable()
         metrics_manager_gateway = S3Manager()
-        
+
         init_engine_core(
             vulnerability_management_gateway,
             secrets_manager_gateway,
             devops_platform_gateway,
             printer_table_gateway,
             metrics_manager_gateway,
-            args
+            args,
         )
     except Exception as e:
         logger.error("Error engine_core: {0} ".format(str(e)))
@@ -142,5 +198,6 @@ def application_core():
         )
         print(devops_platform_gateway.result_pipeline("failed"))
 
+
 if __name__ == "__main__":
     application_core()

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_core/src/domain/usecases/break_build.py

@@ -296,6 +296,9 @@ class BreakBuild:
                     )
                     print(devops_platform_gateway.result_pipeline("failed"))
                     status = "failed"
+                else:
+                    if devops_platform_gateway.get_variable("stage") == "build":
+                        print(devops_platform_gateway.result_pipeline("succeeded_with_issues"))
                 scan_result["compliances"] = {
                     "threshold": {"critical": compliance_critical},
                     "status": status,

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_sast/engine_iac/src/domain/model/config_tool.py

@@ -6,6 +6,7 @@ class ConfigTool:
         self.version = json_data[tool]["VERSION"]
         self.search_pattern = json_data["SEARCH_PATTERN"]
         self.ignore_search_pattern = json_data["IGNORE_SEARCH_PATTERN"]
+        self.update_service_file_name_cft = json_data["UPDATE_SERVICE_WITH_FILE_NAME_CFT"]
         self.use_external_checks_git = json_data[tool]["USE_EXTERNAL_CHECKS_GIT"]
         self.external_checks_git = json_data[tool]["EXTERNAL_CHECKS_GIT"]
         self.repository_ssh_host = json_data[tool]["EXTERNAL_GIT_SSH_HOST"]

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_sast/engine_iac/src/domain/usecases/iac_scan.py

@@ -97,6 +97,12 @@ class IacScan:
             ).get(tool)
             skip_tool = "true" if config_tool.exclusions.get(config_tool.scope_pipeline).get("SKIP_TOOL") else "false"
         if(dict_args["folder_path"]):
+            if config_tool.update_service_file_name_cft == "True" and "cloudformation" in dict_args["platform"]:
+                files = os.listdir(os.path.join(os.getcwd(), dict_args["folder_path"]))
+                if len(files) > 0:
+                    name_file, _ = os.path.splitext(files[0])
+                    config_tool.scope_pipeline = f"{config_tool.scope_pipeline}_{name_file}"
+
             folders_to_scan = [dict_args["folder_path"]]
         else:
             folders_to_scan = self.search_folders(

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/gateways/tool_gateway.py

@@ -4,6 +4,6 @@ from abc import ABCMeta, abstractmethod
 class ToolGateway(metaclass=ABCMeta):
     @abstractmethod
     def run_tool_dependencies_sca(
-        self, remote_config, file_to_scan, bypass_limits_flag, token
+        self, remote_config, dict_args, to_scan, token
     ) -> str:
         "run tool dependencies sca"

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/dependencies_sca_scan.py

@@ -12,15 +12,19 @@ class DependenciesScan:
         tool_run: ToolGateway,
         tool_deserializator: DeserializatorGateway,
         remote_config,
-        file_to_scan,
-        bypass_limits_flag,
+        dict_args,
+        exclusions,
+        pipeline_name,
+        to_scan,
         token,
     ):
         self.tool_run = tool_run
         self.tool_deserializator = tool_deserializator
         self.remote_config = remote_config
-        self.file_to_scan = file_to_scan
-        self.bypass_limits_flag = bypass_limits_flag
+        self.exclusions = exclusions
+        self.pipeline_name = pipeline_name
+        self.dict_args = dict_args
+        self.to_scan = to_scan
         self.token = token
 
     def process(self):
@@ -31,8 +35,10 @@ class DependenciesScan:
         """
         return self.tool_run.run_tool_dependencies_sca(
             self.remote_config,
-            self.file_to_scan,
-            self.bypass_limits_flag,
+            self.dict_args,
+            self.exclusions,
+            self.pipeline_name,
+            self.to_scan,
             self.token,
         )
 

devsecops_engine_tools-1.7.33/devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/handle_remote_config_patterns.py

@@ -0,0 +1,38 @@
+import re
+
+
+class HandleRemoteConfigPatterns:
+    def __init__(
+        self,
+        remote_config,
+        exclusions,
+        pipeline_name,
+    ):
+        self.remote_config = remote_config
+        self.exclusions = exclusions
+        self.pipeline_name = pipeline_name
+
+    def ignore_analysis_pattern(self):
+        """
+        Handle analysis pattern.
+
+        Return: bool: False -> not scan, True -> scan.
+        """
+        ignore = self.remote_config["IGNORE_ANALYSIS_PATTERN"]
+        if re.match(ignore, self.pipeline_name, re.IGNORECASE):
+            return False
+        else:
+            return True
+
+    def skip_from_exclusion(self):
+        """
+        Handle skip tool.
+
+        Return: bool: True -> skip tool, False -> not skip tool.
+        """
+        if (self.pipeline_name in self.exclusions) and (
+            self.exclusions[self.pipeline_name].get("SKIP_TOOL", 0)
+        ):
+            return True
+        else:
+            return False

devsecops_engine_tools-1.7.33/devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/xray_tool/xray_manager_scan.py

@@ -0,0 +1,267 @@
+from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.gateways.tool_gateway import (
+    ToolGateway,
+)
+
+import subprocess
+import platform
+import requests
+import re
+import os
+import json
+import shutil
+import tarfile
+
+from devsecops_engine_tools.engine_utilities.utils.logger_info import MyLogger
+from devsecops_engine_tools.engine_utilities import settings
+
+logger = MyLogger.__call__(**settings.SETTING_LOGGER).get_logger()
+
+
+class XrayScan(ToolGateway):
+    def excluded_files(self, remote_config, pipeline_name, exclusions):
+        pattern = remote_config["XRAY"]["REGEX_EXPRESSION_EXTENSIONS"]
+        if pipeline_name in exclusions:
+            for ex in exclusions[pipeline_name]["XRAY"]:
+                if ex.get("SKIP_FILES", 0):
+                    exclusion = ex.get("SKIP_FILES")
+                    if exclusion.get("files", 0):
+                        excluded_file_types = exclusion["files"]
+                        pattern2 = pattern
+                        for ext in excluded_file_types:
+                            pattern2 = (
+                                pattern2.replace("|" + ext, "")
+                                .replace(ext + "|", "")
+                                .replace(ext, "")
+                            )
+                        pattern = pattern2
+
+        return pattern
+
+    def find_packages(self, pattern, packages, working_dir):
+        packages_list = []
+        files_list = []
+        extension_pattern = re.compile(pattern, re.IGNORECASE)
+        for root, dirs, files in os.walk(working_dir):
+            components = root.split(os.path.sep)
+            flag = 0
+            for package in packages:
+                if not (package in components):
+                    flag = 1
+                    if package in dirs:
+                        packages_list.append(os.path.join(root, package))
+            if flag:
+                for file in files:
+                    if extension_pattern.search(file):
+                        files_list.append(os.path.join(root, file))
+        return packages_list, files_list
+
+    def compress_and_mv(self, tar_path, package):
+        try:
+            with tarfile.open(tar_path, "w") as tar:
+                tar.add(
+                    package,
+                    arcname=os.path.basename(package),
+                    filter=lambda x: None if "/.bin/" in x.name else x,
+                )
+
+        except subprocess.CalledProcessError as e:
+            logger.error(f"Error during {package} compression: {e}")
+
+    def move_files(self, dir_to_scan_path, finded_files):
+        for file in finded_files:
+            target = os.path.join(dir_to_scan_path, os.path.basename(file))
+            shutil.copy2(file, target)
+            logger.debug(f"File to scan: {file}")
+
+    def find_artifacts(self, to_scan, pattern, packages):
+        dir_to_scan_path = os.path.join(to_scan, "dependencies_to_scan")
+        if os.path.exists(dir_to_scan_path):
+            shutil.rmtree(dir_to_scan_path)
+        os.makedirs(dir_to_scan_path)
+
+        packages_list, files_list = self.find_packages(pattern, packages, to_scan)
+
+        for package in packages_list:
+            tar_path = os.path.join(
+                dir_to_scan_path,
+                "pkg"
+                + str(packages_list.index(package) + 1)
+                + "_"
+                + os.path.basename(package)
+                + ".tar",
+            )
+            self.compress_and_mv(tar_path, package)
+
+        if len(files_list):
+            self.move_files(dir_to_scan_path, files_list)
+
+        files = os.listdir(dir_to_scan_path)
+        files = [
+            file
+            for file in files
+            if os.path.isfile(os.path.join(dir_to_scan_path, file))
+        ]
+        file_to_scan = None
+        if files:
+            file_to_scan = os.path.join(dir_to_scan_path, "file_to_scan.tar")
+            self.compress_and_mv(file_to_scan, dir_to_scan_path)
+            files_string = ", ".join(files)
+            logger.debug(f"Files to scan: {files_string}")
+            print(f"Files to scan: {files_string}")
+        else:
+            logger.warning("No artifacts found")
+
+        return file_to_scan
+
+    def install_tool_linux(self, prefix, version):
+        installed = subprocess.run(
+            ["which", prefix],
+            stdout=subprocess.PIPE,
+            stderr=subprocess.PIPE,
+        )
+        if installed.returncode == 1:
+            command = ["chmod", "+x", prefix]
+            try:
+                url = f"https://releases.jfrog.io/artifactory/jfrog-cli/v2-jf/{version}/jfrog-cli-linux-amd64/jf"
+                response = requests.get(url, allow_redirects=True)
+                with open(prefix, "wb") as archivo:
+                    archivo.write(response.content)
+                subprocess.run(
+                    command, check=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE
+                )
+            except subprocess.CalledProcessError as error:
+                logger.error(f"Error during Jfrog Cli installation on Linux: {error}")
+
+    def install_tool_windows(self, prefix, version):
+        try:
+            subprocess.run(
+                [prefix, "--version"],
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+            )
+        except:
+            try:
+                url = f"https://releases.jfrog.io/artifactory/jfrog-cli/v2-jf/{version}/jfrog-cli-windows-amd64/jf.exe"
+                response = requests.get(url, allow_redirects=True)
+                with open(prefix, "wb") as archivo:
+                    archivo.write(response.content)
+            except subprocess.CalledProcessError as error:
+                logger.error(f"Error while Jfrog Cli installation on Windows: {error}")
+
+    def install_tool_darwin(self, prefix, version):
+        installed = subprocess.run(
+            ["which", prefix],
+            stdout=subprocess.PIPE,
+            stderr=subprocess.PIPE,
+        )
+        if installed.returncode == 1:
+            command = ["chmod", "+x", prefix]
+            try:
+                url = f"https://releases.jfrog.io/artifactory/jfrog-cli/v2-jf/{version}/jfrog-cli-mac-386/jf"
+                response = requests.get(url, allow_redirects=True)
+                with open(prefix, "wb") as archivo:
+                    archivo.write(response.content)
+                subprocess.run(
+                    command, check=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE
+                )
+            except subprocess.CalledProcessError as error:
+                logger.error(f"Error during Jfrog Cli installation on Darwin: {error}")
+
+    def config_server(self, prefix, token):
+        try:
+            c_import = [prefix, "c", "im", token]
+            result = subprocess.run(
+                c_import,
+                check=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+            )
+            server_id = re.search(r"'(.*?)'", result.stderr).group(1)
+            c_set_server = [prefix, "c", "use", server_id]
+            subprocess.run(
+                c_set_server,
+                check=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+            )
+        except subprocess.CalledProcessError as error:
+            logger.error(f"Error during Xray Server configuration: {error}")
+
+    def config_audit_scan(self, to_scan):
+        gradlew_path = os.path.join(to_scan, "gradlew")
+        if os.path.exists(gradlew_path):
+            os.chmod(gradlew_path, 0o755)
+
+    def scan_dependencies(self, prefix, cwd, mode, to_scan):
+        command = [
+            prefix,
+            mode,
+            "--format=json",
+            f"{to_scan}",
+        ]
+        result = subprocess.run(
+            command, cwd=cwd, stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True
+        )
+        if result.returncode == 0:
+            scan_result = json.loads(result.stdout)
+            file_result = os.path.join(os.getcwd(), "scan_result.json")
+            with open(file_result, "w") as file:
+                json.dump(scan_result, file, indent=4)
+            if result.stdout == "null\n":
+                logger.warning(f"Xray scan returned null: {result.stderr}")
+                return None
+            return file_result
+        else:
+            logger.error(f"Error executing Xray scan: {result.stderr}")
+            return None
+
+    def run_tool_dependencies_sca(
+        self,
+        remote_config,
+        dict_args,
+        exclusion,
+        pipeline_name,
+        to_scan,
+        token,
+    ):
+        if dict_args["xray_mode"] == "scan":
+            pattern = self.excluded_files(remote_config, pipeline_name, exclusion)
+            to_scan = self.find_artifacts(
+                to_scan, pattern, remote_config["XRAY"]["PACKAGES_TO_SCAN"]
+            )
+            cwd = os.getcwd()
+            if not to_scan:
+                return None
+        else:
+            self.config_audit_scan(to_scan)
+            cwd = to_scan
+            to_scan = ""
+
+        cli_version = remote_config["XRAY"]["CLI_VERSION"]
+        os_platform = platform.system()
+
+        if os_platform == "Linux":
+            command_prefix = os.path.join(os.path.expanduser("~"), "jf")
+            self.install_tool_linux(command_prefix, cli_version)
+        elif os_platform == "Windows":
+            command_prefix = os.path.join(os.path.expanduser("~"), "jf.exe")
+            self.install_tool_windows(command_prefix, cli_version)
+        elif os_platform == "Darwin":
+            command_prefix = os.path.join(os.path.expanduser("~"), "jf")
+            self.install_tool_darwin(command_prefix, cli_version)
+        else:
+            logger.warning(f"{os_platform} is not supported.")
+            return None
+
+        self.config_server(command_prefix, token)
+
+        results_file = self.scan_dependencies(
+            command_prefix,
+            cwd,
+            dict_args["xray_mode"],
+            to_scan,
+        )
+
+        return results_file

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/entry_points/entry_point_tool.py

@@ -7,9 +7,6 @@ from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.usecases.s
 from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.usecases.handle_remote_config_patterns import (
     HandleRemoteConfigPatterns,
 )
-from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.usecases.find_artifacts import (
-    FindArtifacts,
-)
 
 import os
 import sys
@@ -46,24 +43,26 @@ def init_engine_dependencies(
     input_core = SetInputCore(remote_config, exclusions, pipeline_name, tool)
 
     if scan_flag and not (skip_flag):
-        bypass_limits_flag = handle_remote_config_patterns.bypass_archive_limits()
-        pattern = handle_remote_config_patterns.excluded_files()
-
-        find_artifacts = FindArtifacts(
-            os.getcwd(), pattern, remote_config["PACKAGES_TO_SCAN"]
-        )
-        file_to_scan = find_artifacts.find_artifacts()
-        if file_to_scan:
+        to_scan = dict_args["folder_path"] if dict_args["folder_path"] else os.getcwd()
+        if os.path.exists(to_scan):
             dependencies_sca_scan = DependenciesScan(
                 tool_run,
                 tool_deserializator,
                 remote_config,
-                file_to_scan,
-                bypass_limits_flag,
+                dict_args,
+                exclusions,
+                pipeline_name,
+                to_scan,
                 token,
             )
             dependencies_scanned = dependencies_sca_scan.process()
-            deserialized = dependencies_sca_scan.deserializator(dependencies_scanned)
+            deserialized = (
+                dependencies_sca_scan.deserializator(dependencies_scanned)
+                if dependencies_scanned is not None
+                else []
+            )
+        else:
+            logger.error(f"Path {to_scan} does not exist")
     else:
         print(f"Tool skipped by DevSecOps policy")
         logger.info(f"Tool skipped by DevSecOps policy")

devsecops_engine_tools-1.7.33/devsecops_engine_tools/version.py

@@ -0,0 +1 @@
+version = '1.7.33'

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: devsecops-engine-tools
-Version: 1.7.31
+Version: 1.7.33
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team
@@ -64,7 +64,7 @@ pip3 install devsecops-engine-tools
 ### Scan running - flags (CLI)
 
 ```bash
-devsecops-engine-tools --platform_devops ["local","azure","github"] --remote_config_repo ["remote_config_repo"] --tool ["engine_iac", "engine_dast", "engine_secret", "engine_dependencies", "engine_container"] --folder_path ["Folder path scan engine_iac"] --platform ["k8s","cloudformation","docker", "openapi"] --use_secrets_manager ["false", "true"] --use_vulnerability_management ["false", "true"] --send_metrics ["false", "true"] --token_cmdb ["token_cmdb"] --token_vulnerability_management ["token_vulnerability_management"] --token_engine_container ["token_engine_container"] --token_engine_dependencies ["token_engine_dependencies"] 
+devsecops-engine-tools --platform_devops ["local","azure","github"] --remote_config_repo ["remote_config_repo"] --tool ["engine_iac", "engine_dast", "engine_secret", "engine_dependencies", "engine_container"] --folder_path ["Folder path scan engine_iac"] --platform ["k8s","cloudformation","docker", "openapi"] --use_secrets_manager ["false", "true"] --use_vulnerability_management ["false", "true"] --send_metrics ["false", "true"] --token_cmdb ["token_cmdb"] --token_vulnerability_management ["token_vulnerability_management"] --token_engine_container ["token_engine_container"] --token_engine_dependencies ["token_engine_dependencies"] --xray_mode ["scan", "audit"]
 ```
 
 ### Structure Remote Config

{devsecops_engine_tools-1.7.31 → devsecops_engine_tools-1.7.33}/devsecops_engine_tools.egg-info/SOURCES.txt

@@ -183,7 +183,6 @@ devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/gateways/
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/gateways/tool_gateway.py
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/__init__.py
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/dependencies_sca_scan.py
-devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/find_artifacts.py
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/handle_remote_config_patterns.py
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/usecases/set_input_core.py
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/__init__.py