devsecops-engine-tools 1.90.2__py3-none-any.whl → 1.91.0__py3-none-any.whl

devsecops_engine_tools/engine_risk/src/domain/usecases/handle_filters.py

@@ -1,5 +1,6 @@
 import copy
-
+import os
+import json
 
 class HandleFilters:
     def filter(self, findings):
@@ -9,9 +10,28 @@ class HandleFilters:
 
     def filter_tags_days(self, devops_platform_gateway, remote_config, findings):
         tag_exclusion_days = remote_config["TAG_EXCLUSION_DAYS"]
+        runtime_tag_exclusion_days = remote_config["RUNTIME_TAG_EXCLUSION_DAYS"]
         filtered_findings = []
         filtered = 0
 
+        if runtime_tag_exclusion_days['ENABLED']:
+
+            def print_error(devops_platform_gateway, tag_exclusion_days_str, message):
+                runtime_message_set = f"Runtime Tag Exclusions days set \"{tag_exclusion_days_str}\". {message}"
+                if runtime_tag_exclusion_days['ERROR_ON_FAILED']:
+                    print(devops_platform_gateway.message("error", runtime_message_set))
+                else:
+                    print(devops_platform_gateway.message("info", f"{runtime_message_set}. Using default TAG_EXCLUSION_DAYS"))
+
+            tag_exclusion_days_str = os.environ.get('TAG_EXCLUSION_DAYS')
+            if tag_exclusion_days_str and tag_exclusion_days_str.strip():
+                try:
+                    tag_exclusion_days = json.loads(tag_exclusion_days_str)
+                except:
+                    print_error(devops_platform_gateway, tag_exclusion_days_str, "Parse Error")
+            else:
+                print_error(devops_platform_gateway, tag_exclusion_days_str, "Invalid Env Var")
+
         for finding in findings:
             exclude = False
             for tag in finding.tags:

devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_tool.py

@@ -106,7 +106,7 @@ class KicsTool(ToolGateway):
                         check_name = query.get("query_name", ""),
                         check_class = query.get("category", ""),
                         severity = query.get("severity", ""),
-                        where = f"{file.get("file_name", "")} (line {file.get("line", "")}): expected value: {file.get("expected_value", "")}, actual value: {file.get("actual_value", "")}",
+                        where = f"{file.get('file_name', '')} (line {file.get('line', '')}) - expected value: {file.get('expected_value', '')}, actual value: {file.get('actual_value', '')}",
                         resource = file.get("issue_type", "unknown"),
                         description = query.get("description", ""),
                         module="engine_iac",

devsecops_engine_tools/version.py

@@ -1 +1 @@
-version = '1.90.2'
+version = '1.91.0'

{devsecops_engine_tools-1.90.2.dist-info → devsecops_engine_tools-1.91.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: devsecops-engine-tools
-Version: 1.90.2
+Version: 1.91.0
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team

{devsecops_engine_tools-1.90.2.dist-info → devsecops_engine_tools-1.91.0.dist-info}/RECORD

@@ -1,5 +1,5 @@
 devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/version.py,sha256=DfCysLSZSXjvHvpdX5Wu358G8nGSzf9L5xeMDxdmVVY,19
+devsecops_engine_tools/version.py,sha256=Pq20F2_fSR_lumYd84Z8uP9BrIUqHZYSHiST1yUqnRE,19
 devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -104,7 +104,7 @@ devsecops_engine_tools/engine_risk/src/domain/usecases/add_data.py,sha256=4wqDj-
 devsecops_engine_tools/engine_risk/src/domain/usecases/break_build.py,sha256=ixUlW4rL8ZRj_v1tQHeQiQlzAWV3DUqU1I56aqWja8M,17052
 devsecops_engine_tools/engine_risk/src/domain/usecases/check_threshold.py,sha256=VYdmcbAuNNvdHCegRfvza7YJ8FHbFNyDosrKJrMW93I,765
 devsecops_engine_tools/engine_risk/src/domain/usecases/get_exclusions.py,sha256=UNULFNbGAgQKxUQ7buEgL8uIzyVP3GEpGKguDIuZTUc,4113
-devsecops_engine_tools/engine_risk/src/domain/usecases/handle_filters.py,sha256=vluqHpEgzbsh1fyuE-UX41u2yj8TYiRX3UabiwrEcbw,1810
+devsecops_engine_tools/engine_risk/src/domain/usecases/handle_filters.py,sha256=npd5MQus_cf6sv7JIAi5YGURyXJDSXxX1big7ts7MjY,2948
 devsecops_engine_tools/engine_risk/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_risk/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_risk/src/infrastructure/driven_adapters/first_csv/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -156,7 +156,7 @@ devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/checkov/checkov_tool.py,sha256=JP_NZfnddbGYRyiLGCpQ8kNI0t7v1TNxt7sp6jBG98w,15183
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_deserealizator.py,sha256=hUc5Rl92Bq9UltXSbyWRWIa_2HDSd1oPBctAkeXcQKE,2147
-devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_tool.py,sha256=AJzd96JF3B--kO41Oqzp4pVW-7UMrHzb66sedgtdC_c,10555
+devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kics/kics_tool.py,sha256=lmHY1b2YYQ3YqUobNoZBlPu1UnRZIaqDZudThzUpTvo,10556
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kubescape/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kubescape/kubescape_deserealizator.py,sha256=bGOGmsIpJcQzTMxptJPwZCA9_2Woaua3pXmMs4kTnX8,2893
 devsecops_engine_tools/engine_sast/engine_iac/src/infrastructure/driven_adapters/kubescape/kubescape_tool.py,sha256=1CpaqzDaXinPxM1lSceoaBpccJ3feHwkIdYe3SQjero,4870
@@ -350,8 +350,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
 devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
 devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
 devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=HCjS900TBoNcHrC4LaiP-Kf9frVdtagF130qOUgnO2M,6757
-devsecops_engine_tools-1.90.2.dist-info/METADATA,sha256=NJ-69FNIQy9hSK8eYVLyZbJrN7QBU5XbJ-ZggrprBVM,12093
-devsecops_engine_tools-1.90.2.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
-devsecops_engine_tools-1.90.2.dist-info/entry_points.txt,sha256=MHCTFFs9bdNKo6YcWCcBW2_8X6yTisgLOlmVx-V8Rxc,276
-devsecops_engine_tools-1.90.2.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
-devsecops_engine_tools-1.90.2.dist-info/RECORD,,
+devsecops_engine_tools-1.91.0.dist-info/METADATA,sha256=QJ5jedYf5bS8WEXFpXeV2lJ-SHn4XfT7PmhNywRQl-0,12093
+devsecops_engine_tools-1.91.0.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
+devsecops_engine_tools-1.91.0.dist-info/entry_points.txt,sha256=MHCTFFs9bdNKo6YcWCcBW2_8X6yTisgLOlmVx-V8Rxc,276
+devsecops_engine_tools-1.91.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
+devsecops_engine_tools-1.91.0.dist-info/RECORD,,