PyPI - devsecops-engine-tools - Versions diffs - 1.7.3__py3-none-any.whl → 1.7.5__py3-none-any.whl - Mend

devsecops-engine-tools 1.7.3py3-none-any.whl → 1.7.5py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of devsecops-engine-tools might be problematic. Click here for more details.

Files changed (13) hide show

devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py CHANGED Viewed

@@ -112,10 +112,10 @@ def application_core():
             args
         )
     except Exception as e:
-        logger.error("Error SCAN: {0} ".format(str(e)))
+        logger.error("Error engine_core: {0} ".format(str(e)))
         print(
             devops_platform_gateway.message(
-                "error", "Error SCAN: {0} ".format(str(e))
+                "error", "Error engine_core: {0} ".format(str(e))
             )
         )
         print(devops_platform_gateway.result_pipeline("failed"))

devsecops_engine_tools/engine_core/src/domain/usecases/handle_scan.py CHANGED Viewed

@@ -98,7 +98,7 @@ class HandleScan:
             findings_list, input_core = runner_engine_iac(
                 dict_args, config_tool["ENGINE_IAC"]["TOOL"], secret_tool,self.devops_platform_gateway, env
             )
-            if dict_args["use_vulnerability_management"] == "true":
+            if dict_args["use_vulnerability_management"] == "true" and input_core.path_file_results:
                 self._use_vulnerability_management(
                     config_tool, input_core, dict_args, secret_tool, env
                 )

devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py CHANGED Viewed

@@ -96,7 +96,7 @@ class DefectDojoPlatform(VulnerabilityManagementGateway):
                         in enviroment_mapping
                         else enviroment_mapping["default"]
                     ),
-                    tags="evc",
+                    tags=vulnerability_management.dict_args["tool"],
                 )
                 response = DefectDojo.send_import_scan(request)

devsecops_engine_tools/engine_sast/engine_iac/src/domain/usecases/iac_scan.py CHANGED Viewed

@@ -49,6 +49,9 @@ class IacScan:
                 dict_args["platform"],
                 secret_tool,
             )
+        else:
+            print(f"Tool skipped by DevSecOps policy")
+            logger.info(f"Tool skipped by DevSecOps policy")
         totalized_exclusions = []
         (

devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_deserealizator.py CHANGED Viewed

@@ -11,11 +11,11 @@ class SecretScanDeserealizator(DeseralizatorGateway):
     def get_list_vulnerability(self, results_scan_list: List[dict], os, path_directory) -> List[Finding]:
         list_open_vulnerabilities = []
         for result in results_scan_list:
-            where_text, line, raw = self.get_where_correctly(result, os, path_directory)
+            where_text, raw = self.get_where_correctly(result, os, path_directory)
             vulnerability_open = Finding(
                 id="SECRET_SCANNING",
                 cvss=None,
-                where=f"{where_text}, Line: {line}, Secret: {raw}",
+                where=f"{where_text}, Secret: {raw}",
                 description="Sensitive information in source code",
                 severity="critical",
                 identification_date=datetime.now().strftime("%d%m%Y"),
@@ -29,7 +29,6 @@ class SecretScanDeserealizator(DeseralizatorGateway):
         return list_open_vulnerabilities
     def get_where_correctly(self, result: dict, os, path_directory):
-        line = str(result.get("SourceMetadata").get("Data").get("Filesystem").get("line") + 1 or "Multiline")
         original_where = str(result.get("SourceMetadata").get("Data").get("Filesystem").get("file"))
         raw = str(result.get("Raw"))
         if re.search(r'Linux', os):
@@ -37,4 +36,4 @@ class SecretScanDeserealizator(DeseralizatorGateway):
         path_remove = path_directory or ""
         where_text = original_where.replace(path_remove, "")
-        return where_text, line, raw
+        return where_text, raw

devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/import_scan.py CHANGED Viewed

@@ -181,7 +181,7 @@ class ImportScanSerializer(Schema):
     auto_create_context = fields.Str(required=False, load_default="true")
     deduplication_on_engagement = fields.Str(required=False)
     lead = fields.Str(required=False)
-    tags = fields.Str(required=True, validate=validate.OneOf(["cde", "evc"]))
+    tags = fields.Str(required=True)
     close_old_findings = fields.Str(required=False, load_default=True)
     close_old_findings_product_scope = fields.Str(required=False)
     push_to_jira = fields.Str(required=False)

devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/cmdb.py CHANGED Viewed

@@ -43,7 +43,6 @@ class CmdbUserCase:
             )
         request.product_name = product_data.product_name
-        request.tags = product_data.tag_product if product_data.tag_product else "ORPHAN"
         request.product_description = product_data.product_description
         return request

devsecops_engine_tools/version.py CHANGED Viewed

	@@ -1 +1 @@
1	- version = '1.7.3'
1	+ version = '1.7.5'

{devsecops_engine_tools-1.7.3.dist-info → devsecops_engine_tools-1.7.5.dist-info}/METADATA RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: devsecops-engine-tools
-Version: 1.7.3
+Version: 1.7.5
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team

{devsecops_engine_tools-1.7.3.dist-info → devsecops_engine_tools-1.7.5.dist-info}/RECORD RENAMED Viewed

@@ -1,9 +1,9 @@
 devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/version.py,sha256=UHqEAHY-ttVnJEFOzoluHzMxMQRbjou7FukFI-qrUaM,17
+devsecops_engine_tools/version.py,sha256=RcLLAdA8QgF7ex8SHC-MX4bUr5hGi2takvlcxHtrOEE,18
 devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py,sha256=ZwYhoKLJ01PGaOz3y7FAEgGeDF00kn7P1_njlZt6r30,5128
+devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py,sha256=9aPKhw6vbK5xZzzklF2azkeAzo54CyBXJ-P7QUmzCyM,5142
 devsecops_engine_tools/engine_core/src/deployment/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/deployment/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/domain/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -24,7 +24,7 @@ devsecops_engine_tools/engine_core/src/domain/model/gateway/secrets_manager_gate
 devsecops_engine_tools/engine_core/src/domain/model/gateway/vulnerability_management_gateway.py,sha256=F2VfV_-MjPMY-wlkgIviuIfKx0yZoyyXkJRXDPHjU48,533
 devsecops_engine_tools/engine_core/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/domain/usecases/break_build.py,sha256=z6lcd-tnb-3QfZ1yf2ZlaRbovwF0YE6nUmS5V92aszc,15534
-devsecops_engine_tools/engine_core/src/domain/usecases/handle_scan.py,sha256=TCChdAqsNRus417udUZngujAbTqNlCLS_zymnpijzF4,6377
+devsecops_engine_tools/engine_core/src/domain/usecases/handle_scan.py,sha256=CBk6KR2lpZ_ayitIdZERjJ0yasg1_dICHA0Tw97s-eo,6410
 devsecops_engine_tools/engine_core/src/domain/usecases/metrics_manager.py,sha256=Xi0iNnPrFgqd2cBdAA5E_tgouhxs-BTo016aolnGgv8,2413
 devsecops_engine_tools/engine_core/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -34,7 +34,7 @@ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/secret
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=Ot1j5my-iEpU-ZYy9yNXkwmwLOmJ3f95JyyAUcpFN5g,4967
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py,sha256=CQWRtwGplHQRLIhGV-x_AjB8ESSeBq5aPETXg9X07E8,9072
+devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py,sha256=3SWPIEWD9XmLPOUv-yddqOQ-BDSSd3FwPVSu7gwWwSk,9109
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_pretty_table/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/printer_pretty_table/printer_pretty_table.py,sha256=ilsrp-JB1ejM26-ItUuD3JSDqY7K8bzptwAUs_vLhW4,2855
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/runtime_local/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -69,7 +69,7 @@ devsecops_engine_tools/engine_sast/engine_iac/src/domain/model/config_tool.py,sh
 devsecops_engine_tools/engine_sast/engine_iac/src/domain/model/gateways/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/domain/model/gateways/tool_gateway.py,sha256=ep5luExG_wj8csjUUkecCq83jwi7Z8qogSPbexmZyUM,218
 devsecops_engine_tools/engine_sast/engine_iac/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_sast/engine_iac/src/domain/usecases/iac_scan.py,sha256=k2jpNDbeYHXAEUEutJ8vMukI346mS7_GVq01VbaAAsI,4865
+devsecops_engine_tools/engine_sast/engine_iac/src/domain/usecases/iac_scan.py,sha256=ijFVq_acgzGJ58p-L9mApn7kmgJKiD8mih99Jncorcc,4995
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -101,7 +101,7 @@ devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapt
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/git_cli/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/git_cli/git_run.py,sha256=xKIUAnNK4u0pTHgo5tFrzmnquBegBQgN2-3jU6V6vxQ,2642
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_deserealizator.py,sha256=OJMxvIN7H3wuReuQ2A0HmCWYl3tb8MmZgjapWfw4p9k,1962
+devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_deserealizator.py,sha256=HZcNUa9VvK1InsDY94HiuDQuEH_R6pJIeAN3Zwi8CBA,1825
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/driven_adapters/trufflehog/trufflehog_run.py,sha256=BYbYBdC_DWWxpaxoLWXYdIHiKXDbUJ_zOyExt0coJwA,4544
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_secret/src/infrastructure/entry_points/entry_point_tool.py,sha256=cSCDXXDptaIDeBn-u9y_j5UbtjEY3AYK1zNXyKi9Ilw,693
@@ -190,9 +190,9 @@ devsecops_engine_tools/engine_utilities/defect_dojo/domain/request_objects/findi
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/request_objects/import_scan.py,sha256=Y1ewQ-9wM287MSEraT4myG1RDl4LjmeqansR3-Exn7U,4974
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/finding.py,sha256=4HSeSsZqBg-4Z1yR65o0nkfy6W4DSIC4wMvuz_LVAgs,5042
-devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/import_scan.py,sha256=Z75nX88JuCHLw_HXn12ZDIgGTSzgln81eIzG2qKXLBw,7252
+devsecops_engine_tools/engine_utilities/defect_dojo/domain/serializers/import_scan.py,sha256=VyV1LzeJDk51RYXz8EiweLHccpsuwTY3hTkAnkscX2E,7211
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/cmdb.py,sha256=dMKSlw0yhIT3cQ-xzh8uBAHOnCjJmiA056mHkPuwXrU,2741
+devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/cmdb.py,sha256=BUOdvP39bEMQ6Unr2hB28eljVGU2Uv8dDEkzRyEJgyQ,2650
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/finding.py,sha256=TjfpdJtaBwQvT8XNJKBf6tuOASOAw7ZiOxJbqsKadaA,1689
 devsecops_engine_tools/engine_utilities/defect_dojo/domain/user_case/import_scan.py,sha256=6Ik3_IUPgsvVQ3uXMV6nkxdT89-lVNQVdvVWzmZSxgE,6794
 devsecops_engine_tools/engine_utilities/defect_dojo/infraestructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -224,8 +224,8 @@ devsecops_engine_tools/engine_utilities/utils/logger_info.py,sha256=4Mz8Bwlm9Mku
 devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGaxYSDe0ZRh6VHRf53H4sXPcb-vNP_i81PUn3I,307
 devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=GAslbWaBpwP3mP6fBsgVl07TTBgcCggQTy8h2M9ibeo,612
 devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=yNtlT-8Legz1sHbGPH8LNYjL-LgDUE0zXG2rYjiab7U,290
-devsecops_engine_tools-1.7.3.dist-info/METADATA,sha256=mbPeCnkSCuZdd4ikXOdHUxWrkodbXv2mldDZWTnTQKA,9926
-devsecops_engine_tools-1.7.3.dist-info/WHEEL,sha256=GJ7t_kWBFywbagK5eo9IoUwLW6oyOeTKmQ-9iHFVNxQ,92
-devsecops_engine_tools-1.7.3.dist-info/entry_points.txt,sha256=9IjXF_7Zpgowq_SY6OSmsA9vZze18a8_AeHwkQVrgKk,131
-devsecops_engine_tools-1.7.3.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
-devsecops_engine_tools-1.7.3.dist-info/RECORD,,
+devsecops_engine_tools-1.7.5.dist-info/METADATA,sha256=QhMyurVZOxWWOTwY2pEerBrVsdmCT7kISl9O-jTRvVA,9926
+devsecops_engine_tools-1.7.5.dist-info/WHEEL,sha256=GJ7t_kWBFywbagK5eo9IoUwLW6oyOeTKmQ-9iHFVNxQ,92
+devsecops_engine_tools-1.7.5.dist-info/entry_points.txt,sha256=9IjXF_7Zpgowq_SY6OSmsA9vZze18a8_AeHwkQVrgKk,131
+devsecops_engine_tools-1.7.5.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
+devsecops_engine_tools-1.7.5.dist-info/RECORD,,

{devsecops_engine_tools-1.7.3.dist-info → devsecops_engine_tools-1.7.5.dist-info}/WHEEL RENAMED Viewed

File without changes

{devsecops_engine_tools-1.7.3.dist-info → devsecops_engine_tools-1.7.5.dist-info}/entry_points.txt RENAMED Viewed

File without changes

{devsecops_engine_tools-1.7.3.dist-info → devsecops_engine_tools-1.7.5.dist-info}/top_level.txt RENAMED Viewed

File without changes

devsecops-engine-tools 1.7.3__py3-none-any.whl → 1.7.5__py3-none-any.whl

Potentially problematic release.

devsecops-engine-tools 1.7.3py3-none-any.whl → 1.7.5py3-none-any.whl