devsecops-engine-tools 1.91.0__py3-none-any.whl → 1.93.0__py3-none-any.whl

devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py

@@ -22,7 +22,13 @@ from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.aws.s
 from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.printer_pretty_table.printer_pretty_table import (
     PrinterPrettyTable,
 )
-from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.syft.syft import Syft
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.syft.syft import (
+    Syft
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.cdxgen.cdxgen import (
+    CdxGen
+)
+
 import sys
 import argparse
 from devsecops_engine_tools.engine_utilities.utils.logger_info import MyLogger
@@ -285,7 +291,10 @@ def application_core():
         }.get(args["remote_config_source"])
         metrics_manager_gateway = S3Manager()
         printer_table_gateway = PrinterPrettyTable()
-        sbom_tool_gateway = Syft()
+        sbom_tool_gateway = {
+            "syft": Syft(),
+            "cdxgen": CdxGen()
+        }
 
         init_engine_core(
             vulnerability_management_gateway,

devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/cdxgen.py

@@ -0,0 +1,123 @@
+from dataclasses import dataclass
+import requests
+import subprocess
+import platform
+
+from devsecops_engine_tools.engine_core.src.domain.model.gateway.sbom_manager import (
+    SbomManagerGateway,
+)
+from devsecops_engine_tools.engine_utilities.sbom.deserealizator import (
+    get_list_component,
+)
+from devsecops_engine_tools.engine_core.src.domain.model.component import (
+    Component,
+)
+
+from devsecops_engine_tools.engine_utilities.utils.logger_info import MyLogger
+from devsecops_engine_tools.engine_utilities import settings
+
+logger = MyLogger.__call__(**settings.SETTING_LOGGER).get_logger()
+
+
+@dataclass
+class CdxGen(SbomManagerGateway):
+
+    def get_components(self, artifact, config, service_name) -> "list[Component]":
+        try:
+            cdxgen_version = config["CDXGEN"]["CDXGEN_VERSION"]
+            slim = "-slim" if config["CDXGEN"]["SLIM_BINARY"] else ""
+            os_platform = platform.system()
+            base_url = (
+                f"https://github.com/CycloneDX/cdxgen/releases/download/v{cdxgen_version}/"
+            )
+
+            command_prefix = "cdxgen"
+            if os_platform == "Linux":
+                file = f"cdxgen-linux-amd64{slim}"
+                command_prefix = self._install_tool_unix(
+                    file, base_url + file, command_prefix
+                )
+            elif os_platform == "Darwin":
+                file = f"cdxgen-darwin-amd64{slim}"
+                command_prefix = self._install_tool_unix(
+                    file, base_url + file, command_prefix
+                )
+            elif os_platform == "Windows":
+                file = f"cdxgen-windows-amd64{slim}.exe"
+                command_prefix = self._install_tool_windows(
+                    file, base_url + file, "cdxgen.exe"
+                )
+            else:
+                logger.warning(f"{os_platform} is not supported.")
+                return None
+
+            result_sbom = self._run_cdxgen(command_prefix, artifact, service_name)
+            return get_list_component(result_sbom, config["CDXGEN"]["OUTPUT_FORMAT"])
+        except Exception as e:
+            logger.error(f"Error generating SBOM: {e}")
+            return None
+
+    def _run_cdxgen(self, command_prefix, artifact, service_name):
+        result_file = f"{service_name}_SBOM.json"
+        command = [
+            command_prefix,
+            artifact,
+            "-o",
+            result_file,
+        ]
+
+        try:
+            subprocess.run(
+                command,
+                check=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+            )
+            print(f"SBOM generated and saved to: {result_file}")
+            return result_file
+        except Exception as e:
+            logger.error(f"Error running cdxgen: {e}")
+
+    def _install_tool_unix(self, file, url, command_prefix):
+        installed = subprocess.run(
+            ["which", command_prefix],
+            stdout=subprocess.PIPE,
+            stderr=subprocess.PIPE,
+        )
+        if installed.returncode == 1:
+            try:
+                self._download_tool(file, url)
+                subprocess.run(
+                    ["chmod", "+x", f"./{file}"],
+                    stdout=subprocess.PIPE,
+                    stderr=subprocess.PIPE,
+                )
+                return f"./{file}"
+            except Exception as e:
+                logger.error(f"Error installing cdxgen: {e}")
+        else:
+            return installed.stdout.decode("utf-8").strip()
+
+    def _install_tool_windows(self, file, url, command_prefix):
+        try:
+            installed = subprocess.run(
+                [command_prefix, "--version"],
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+            )
+            return installed.stdout.decode("utf-8").strip()
+        except:
+            try:
+                self._download_tool(file, url)
+                return f"{file}"
+            except Exception as e:
+                logger.error(f"Error installing cdxgen: {e}")
+
+    def _download_tool(self, file, url):
+        try:
+            response = requests.get(url, allow_redirects=True)
+            with open(file, "wb") as compress_file:
+                compress_file.write(response.content)
+        except Exception as e:
+            logger.error(f"Error downloading cdxgen: {e}")

devsecops_engine_tools/engine_core/src/infrastructure/entry_points/entry_point_core.py

@@ -14,7 +14,6 @@ from devsecops_engine_tools.engine_utilities.utils.printers import (
     Printers,
 )
 
-
 def init_engine_core(
     vulnerability_management_gateway: any,
     secrets_manager_gateway: any,
@@ -29,6 +28,7 @@ def init_engine_core(
         args["remote_config_repo"], "/engine_core/ConfigTool.json", args["remote_config_branch"]
     )
     Printers.print_logo_tool(config_tool["BANNER"])
+    sbom_tool_gateway = sbom_tool_gateway.get(config_tool["SBOM_MANAGER"]["TOOL"].lower())
 
     if config_tool[args["module"].upper()]["ENABLED"]:
         if args["module"] == "engine_risk":

devsecops_engine_tools/engine_integrations/src/applications/runner_engine_integrations.py

@@ -0,0 +1,169 @@
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.azure.azure_devops import (
+    AzureDevops
+)
+from devsecops_engine_tools.engine_integrations.src.infrastructure.entry_points.entry_point_integrations import (
+    init_engine_integrations
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.aws.secrets_manager import (
+    SecretsManager
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.azure.azure_devops import (
+    AzureDevops
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.github.github_actions import (
+    GithubActions,
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.runtime_local.runtime_local import (
+    RuntimeLocal,
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.defect_dojo.defect_dojo import (
+    DefectDojoPlatform
+)
+from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.aws.s3_manager import (
+    S3Manager,
+)
+import sys
+import argparse
+from devsecops_engine_tools.engine_utilities.utils.logger_info import MyLogger
+from devsecops_engine_tools.engine_utilities import settings
+
+logger = MyLogger.__call__(**settings.SETTING_LOGGER).get_logger()
+
+def get_inputs_from_cli(args):
+    parser = argparse.ArgumentParser()
+    parser.add_argument(
+        "--integration",
+        choices=["report_sonar"],
+        type=str,
+        required=True,
+        help="Name of the integration to run",
+    )
+    parser.add_argument(
+        "-rcf",
+        "--remote_config_repo",
+        type=str,
+        required=True,
+        help="Name of Config Repo",
+    )
+    parser.add_argument(
+        "-rcb",
+        "--remote_config_branch",
+        type=str,
+        required=False,
+        default="",
+        help="Name of the branch of Config Repo",
+    )
+    parser.add_argument(
+        "-pd",
+        "--platform_devops",
+        choices=["azure", "github", "local"],
+        type=str,
+        required=True,
+        help="Platform where is executed",
+    )
+    parser.add_argument(
+        "-rcs",
+        "--remote_config_source",
+        choices=["azure", "github", "local"],
+        type=str,
+        required=False,
+        help="Source of the remote config repo",
+    )
+    parser.add_argument(
+        "--use_secrets_manager",
+        choices=["true", "false"],
+        type=str,
+        required=True,
+        help="Use Secrets Manager to get the tokens",
+    )
+    parser.add_argument(
+        "--send_metrics",
+        choices=["true", "false"],
+        type=str,
+        required=False,
+        help="Enable or Disable the send metrics to the driven adapter metrics",
+    )
+    # report_sonar flags
+    parser.add_argument(
+        "--sonar_url",
+        required=False,
+        help="Url to access sonar API",
+    )
+    parser.add_argument(
+        "--sonar_instance",
+        required=False,
+        help="Name of the sonar instance to recognize tool config",
+    )
+    parser.add_argument(
+        "--token_cmdb", 
+        required=False, 
+        help="Token to connect to the CMDB"
+    )
+    parser.add_argument(
+        "--token_vulnerability_management",
+        required=False,
+        help="Token to connect to the Vulnerability Management",
+    )
+    parser.add_argument(
+        "--token_sonar",
+        required=False,
+        help="Token to access sonar server",
+    )
+
+    args = parser.parse_args()
+    return {
+        "integration": args.integration,
+        "remote_config_repo": args.remote_config_repo,
+        "remote_config_branch": args.remote_config_branch,
+        "platform_devops": args.platform_devops,
+        "remote_config_source": args.remote_config_source,
+        "use_secrets_manager": args.use_secrets_manager,
+        "send_metrics": args.send_metrics,
+        "sonar_url": args.sonar_url,
+        "sonar_instance": args.sonar_instance,
+        "token_cmdb": args.token_cmdb,
+        "token_vulnerability_management": args.token_vulnerability_management,
+        "token_sonar": args.token_sonar,
+    }
+
+def runner_engine_integrations():
+    try:
+        args = get_inputs_from_cli(sys.argv[1:])
+        if not args["remote_config_source"]: 
+            args["remote_config_source"] = args["platform_devops"]
+
+        vulnerability_management_gateway = DefectDojoPlatform()
+        secrets_manager_gateway = SecretsManager()
+        devops_platform_gateway = {
+            "azure": AzureDevops(),
+            "github": GithubActions(),
+            "local": RuntimeLocal(),
+        }.get(args["platform_devops"])
+        remote_config_source_gateway = {
+            "azure": AzureDevops(),
+            "github": GithubActions(),
+            "local": RuntimeLocal(),
+        }.get(args["remote_config_source"])
+        metrics_manager_gateway = S3Manager()
+        
+        init_engine_integrations(
+            vulnerability_management_gateway=vulnerability_management_gateway,
+            secrets_manager_gateway=secrets_manager_gateway,
+            devops_platform_gateway=devops_platform_gateway,
+            remote_config_source_gateway=remote_config_source_gateway,
+            metrics_manager_gateway=metrics_manager_gateway,
+            args=args,
+        )
+
+    except Exception as e:
+        logger.error("Error engine_integrations: {0} ".format(str(e)))
+        print(
+            devops_platform_gateway.message(
+                "error", "Error engine_integrations: {0} ".format(str(e))
+            )
+        )
+        print(devops_platform_gateway.result_pipeline("failed"))
+
+
+if __name__ == "__main__":
+    runner_engine_integrations()

devsecops_engine_tools/engine_integrations/src/domain/usecases/handle_integrations.py

@@ -0,0 +1,42 @@
+from devsecops_engine_tools.engine_core.src.domain.model.gateway.vulnerability_management_gateway import (
+    VulnerabilityManagementGateway
+)
+from devsecops_engine_tools.engine_core.src.domain.model.gateway.secrets_manager_gateway import (
+    SecretsManagerGateway
+)
+from devsecops_engine_tools.engine_core.src.domain.model.gateway.devops_platform_gateway import (
+    DevopsPlatformGateway
+)
+from devsecops_engine_tools.engine_core.src.domain.model.gateway.metrics_manager_gateway import (
+    MetricsManagerGateway,
+)
+from devsecops_engine_tools.engine_utilities.sonarqube.src.applications.runner_report_sonar import (
+    runner_report_sonar
+)
+
+class Integrations():
+    def __init__(
+        self,
+        vulnerability_management_gateway: VulnerabilityManagementGateway,
+        secrets_manager_gateway: SecretsManagerGateway,
+        devops_platform_gateway: DevopsPlatformGateway,
+        remote_config_source_gateway: DevopsPlatformGateway,
+        metrics_manager_gateway: MetricsManagerGateway,
+    ):
+        self.vulnerability_management_gateway = vulnerability_management_gateway
+        self.secrets_manager_gateway = secrets_manager_gateway
+        self.devops_platform_gateway = devops_platform_gateway
+        self.remote_config_source_gateway = remote_config_source_gateway
+        self.metrics_manager_gateway = metrics_manager_gateway
+
+    def process(self, args):
+        integration = args.get("integration")
+        if integration == "report_sonar":
+            return runner_report_sonar(
+                vulnerability_management_gateway=self.vulnerability_management_gateway,
+                secrets_manager_gateway=self.secrets_manager_gateway,
+                devops_platform_gateway=self.devops_platform_gateway,
+                remote_config_source_gateway=self.remote_config_source_gateway,
+                metrics_manager_gateway=self.metrics_manager_gateway,
+                args=args,
+            )

devsecops_engine_tools/engine_integrations/src/infrastructure/entry_points/entry_point_integrations.py

@@ -0,0 +1,33 @@
+from devsecops_engine_tools.engine_integrations.src.domain.usecases.handle_integrations import (
+    Integrations
+)
+from devsecops_engine_tools.engine_utilities.utils.logger_info import MyLogger
+from devsecops_engine_tools.engine_utilities import settings
+from devsecops_engine_tools.engine_utilities.utils.printers import (
+    Printers,
+)
+
+logger = MyLogger.__call__(**settings.SETTING_LOGGER).get_logger()
+
+
+def init_engine_integrations(
+    vulnerability_management_gateway,
+    secrets_manager_gateway,
+    devops_platform_gateway,
+    remote_config_source_gateway,
+    metrics_manager_gateway,
+    args,
+):
+    config_tool = remote_config_source_gateway.get_remote_config(
+        args["remote_config_repo"], "/engine_core/ConfigTool.json", args["remote_config_branch"]
+    )
+
+    Printers.print_logo_tool(config_tool["BANNER"])
+
+    return Integrations(
+        vulnerability_management_gateway=vulnerability_management_gateway,
+        secrets_manager_gateway=secrets_manager_gateway,
+        devops_platform_gateway=devops_platform_gateway,
+        remote_config_source_gateway=remote_config_source_gateway,
+        metrics_manager_gateway=metrics_manager_gateway,
+    ).process(args)

devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/dependency_check/dependency_check_tool.py

@@ -4,7 +4,7 @@ from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.gate
 from devsecops_engine_tools.engine_sca.engine_dependencies.src.infrastructure.driven_adapters.dependency_check.dependency_check_deserialize import (
     DependencyCheckDeserialize,
 )
-from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.ContextDependencies import (
+from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.context_dependencies import (
     ContextDependencies,
 )
 

devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/xray_tool/xray_manager_scan.py

@@ -1,7 +1,7 @@
 from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.gateways.tool_gateway import (
     ToolGateway,
 )
-from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.ContextDependencies import (
+from devsecops_engine_tools.engine_sca.engine_dependencies.src.domain.model.context_dependencies import (
     ContextDependencies,
 )
 

devsecops_engine_tools/engine_utilities/sonarqube/src/applications/runner_report_sonar.py

@@ -1,111 +1,30 @@
-from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.aws.secrets_manager import (
-    SecretsManager
-)
-from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.azure.azure_devops import (
-    AzureDevops
-)
-from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.defect_dojo.defect_dojo import (
-    DefectDojoPlatform
-)
 from devsecops_engine_tools.engine_utilities.sonarqube.src.infrastructure.driven_adapters.sonarqube.sonarqube_report import(
     SonarAdapter
 )
-from devsecops_engine_tools.engine_core.src.infrastructure.driven_adapters.aws.s3_manager import (
-    S3Manager,
-)
 from devsecops_engine_tools.engine_utilities.sonarqube.src.infrastructure.entry_points.entry_point_report_sonar import (
     init_report_sonar
 )
-import sys
-import argparse
 from devsecops_engine_tools.engine_utilities.utils.logger_info import MyLogger
 from devsecops_engine_tools.engine_utilities import settings
 
 logger = MyLogger.__call__(**settings.SETTING_LOGGER).get_logger()
 
-def get_inputs_from_cli(args):
-    parser = argparse.ArgumentParser()
-    parser.add_argument(
-        "-rcf",
-        "--remote_config_repo",
-        type=str,
-        required=True,
-        help="Name of Config Repo",
-    )
-    parser.add_argument(
-        "-rcb",
-        "--remote_config_branch",
-        type=str,
-        required=False,
-        default="",
-        help="Name of the branch of Config Repo",
-    )
-    parser.add_argument(
-        "--use_secrets_manager",
-        choices=["true", "false"],
-        type=str,
-        required=True,
-        help="Use Secrets Manager to get the tokens",
-    )
-    parser.add_argument(
-        "--send_metrics",
-        choices=["true", "false"],
-        type=str,
-        required=False,
-        help="Enable or Disable the send metrics to the driven adapter metrics",
-    )
-    parser.add_argument(
-        "--sonar_url",
-        required=False,
-        help="Url to access sonar API",
-    )
-    parser.add_argument(
-        "--sonar_instance",
-        required=False,
-        help="Name of the sonar instance to recognize tool config",
-    )
-    parser.add_argument(
-        "--token_cmdb", 
-        required=False, 
-        help="Token to connect to the CMDB"
-    )
-    parser.add_argument(
-        "--token_vulnerability_management",
-        required=False,
-        help="Token to connect to the Vulnerability Management",
-    )
-    parser.add_argument(
-        "--token_sonar",
-        required=False,
-        help="Token to access sonar server",
-    )
-
-    args = parser.parse_args()
-    return {
-        "remote_config_repo": args.remote_config_repo,
-        "remote_config_branch": args.remote_config_branch,
-        "use_secrets_manager": args.use_secrets_manager,
-        "send_metrics": args.send_metrics,
-        "sonar_url": args.sonar_url,
-        "sonar_instance": args.sonar_instance,
-        "token_cmdb": args.token_cmdb,
-        "token_vulnerability_management": args.token_vulnerability_management,
-        "token_sonar": args.token_sonar,
-    }
-
-def runner_report_sonar():
+def runner_report_sonar(
+    vulnerability_management_gateway,
+    secrets_manager_gateway,
+    devops_platform_gateway,
+    remote_config_source_gateway,
+    metrics_manager_gateway,
+    args
+):
     try:
-        vulnerability_management_gateway = DefectDojoPlatform()
-        secrets_manager_gateway = SecretsManager()
-        devops_platform_gateway = AzureDevops()
         sonar_gateway = SonarAdapter()
-        metrics_manager_gateway = S3Manager()
-        args = get_inputs_from_cli(sys.argv[1:])
 
         init_report_sonar(
             vulnerability_management_gateway=vulnerability_management_gateway,
             secrets_manager_gateway=secrets_manager_gateway,
             devops_platform_gateway=devops_platform_gateway,
+            remote_config_source_gateway=remote_config_source_gateway,
             sonar_gateway=sonar_gateway,
             metrics_manager_gateway=metrics_manager_gateway,
             args=args,
@@ -119,7 +38,3 @@ def runner_report_sonar():
             )
         )
         print(devops_platform_gateway.result_pipeline("failed"))
-
-
-if __name__ == "__main__":
-    runner_report_sonar()

devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py

@@ -33,11 +33,13 @@ class ReportSonar:
         vulnerability_management_gateway: VulnerabilityManagementGateway,
         secrets_manager_gateway: SecretsManagerGateway,
         devops_platform_gateway: DevopsPlatformGateway,
+        remote_config_source_gateway: DevopsPlatformGateway,
         sonar_gateway: SonarGateway
     ):
         self.vulnerability_management_gateway = vulnerability_management_gateway
         self.secrets_manager_gateway = secrets_manager_gateway
         self.devops_platform_gateway = devops_platform_gateway
+        self.remote_config_source_gateway = remote_config_source_gateway
         self.sonar_gateway = sonar_gateway
 
     def process(self, args):
@@ -58,7 +60,7 @@ class ReportSonar:
             pipeline_name,
             self.devops_platform_gateway.get_source_code_management_uri()
         )
-        config_tool = self.devops_platform_gateway.get_remote_config(
+        config_tool = self.remote_config_source_gateway.get_remote_config(
             args["remote_config_repo"],
             "/engine_core/ConfigTool.json",
             args["remote_config_branch"]
@@ -78,9 +80,9 @@ class ReportSonar:
             secret = args
             secret_tool = None
 
-        report_config_tool = self.devops_platform_gateway.get_remote_config(
+        report_config_tool = self.remote_config_source_gateway.get_remote_config(
             args["remote_config_repo"],
-            "/report_sonar/ConfigTool.json",
+            "/engine_integrations/report_sonar/ConfigTool.json",
             args["remote_config_branch"]
         )
 

devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/entry_points/entry_point_report_sonar.py

@@ -1,9 +1,6 @@
 from devsecops_engine_tools.engine_utilities.sonarqube.src.domain.usecases.report_sonar import (
     ReportSonar,
 )
-from devsecops_engine_tools.engine_utilities.utils.printers import (
-    Printers,
-)
 from devsecops_engine_tools.engine_core.src.domain.usecases.metrics_manager import (
     MetricsManager,
 )
@@ -18,21 +15,20 @@ def init_report_sonar(
     vulnerability_management_gateway,
     secrets_manager_gateway,
     devops_platform_gateway,
+    remote_config_source_gateway,
     sonar_gateway,
     metrics_manager_gateway,
     args,
 ):
-    config_tool = devops_platform_gateway.get_remote_config(
+    config_tool = remote_config_source_gateway.get_remote_config(
         args["remote_config_repo"], "/engine_core/ConfigTool.json", args["remote_config_branch"]
     )
-    report_config_tool = devops_platform_gateway.get_remote_config(
-        args["remote_config_repo"], "/report_sonar/ConfigTool.json", args["remote_config_branch"]
+    report_config_tool = remote_config_source_gateway.get_remote_config(
+        args["remote_config_repo"], "/engine_integrations/report_sonar/ConfigTool.json", args["remote_config_branch"]
     )
-    excluded_pipelines = devops_platform_gateway.get_remote_config(
-        args["remote_config_repo"], "/report_sonar/Exclusions.json", args["remote_config_branch"]
+    excluded_pipelines = remote_config_source_gateway.get_remote_config(
+        args["remote_config_repo"], "/engine_integrations/report_sonar/Exclusions.json", args["remote_config_branch"]
     )
-    
-    Printers.print_logo_tool(config_tool["BANNER"])
 
     pipeline_name = devops_platform_gateway.get_variable("pipeline_name")
     branch = devops_platform_gateway.get_variable("branch_tag")
@@ -61,6 +57,7 @@ def init_report_sonar(
             vulnerability_management_gateway,
             secrets_manager_gateway,
             devops_platform_gateway,
+            remote_config_source_gateway,
             sonar_gateway,
         ).process(args)
 

devsecops_engine_tools/version.py

@@ -1 +1 @@
-version = '1.91.0'
+version = '1.93.0'

{devsecops_engine_tools-1.91.0.dist-info → devsecops_engine_tools-1.93.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: devsecops-engine-tools
-Version: 1.91.0
+Version: 1.93.0
 Summary: Tool for DevSecOps strategy
 Home-page: https://github.com/bancolombia/devsecops-engine-tools
 Author: Bancolombia DevSecOps Team
@@ -108,6 +108,10 @@ devsecops-engine-tools --platform_devops ["local","azure","github"] --remote_con
    ┃ ┗ 📂engine_dependencies
    ┃   ┗ 📜ConfigTool.json
    ┃   ┗ 📜Exclusions.json
+   ┣ 📂engine_integrations
+   ┃ ┗ 📂report_sonar
+   ┃   ┗ 📜ConfigTool.json
+   ┃   ┗ 📜Exclusions.json
 ```
 For more information visit [here](https://github.com/bancolombia/devsecops-engine-tools/blob/trunk/example_remote_config_local/README.md)
 #### Tools available for the modules (Configuration engine_core/ConfigTool.json)

{devsecops_engine_tools-1.91.0.dist-info → devsecops_engine_tools-1.93.0.dist-info}/RECORD

@@ -1,9 +1,9 @@
 devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/version.py,sha256=Pq20F2_fSR_lumYd84Z8uP9BrIUqHZYSHiST1yUqnRE,19
+devsecops_engine_tools/version.py,sha256=Cq2d_sTJlpopO1NPuYFPni1ALB_Qz7XCbOThymniec8,19
 devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py,sha256=sacJDgi_oPUIWUfO6vrg1kDvjpbeLzfGHgqL3xwcGao,10586
+devsecops_engine_tools/engine_core/src/applications/runner_engine_core.py,sha256=tw8E4AVN7SL1bLfqVe_XPJ2pZT5AN8N1KEIfo6Itwpk,10770
 devsecops_engine_tools/engine_core/src/deployment/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/deployment/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/domain/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -37,6 +37,8 @@ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/s3_man
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/aws/secrets_manager.py,sha256=ELihQBgSPH4f9QCyg2dgjudsFitaqgdsljnVOmaA_v4,1972
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/azure/azure_devops.py,sha256=dKe8hno53uC7JDzRWeBdBeRbDHAasEYLxVaFSvWUVxU,5863
+devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/cdxgen/cdxgen.py,sha256=t1CTeQG2ePBwUdeNinSYEi3vyMjufD0KuHUIxRZCsAU,4370
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/defect_dojo/defect_dojo.py,sha256=ZjtlXKAhAwHCSJTkA2X0Z-4utoCY6lvipqYJ6gkk6OU,32417
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/github/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -50,7 +52,7 @@ devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/runtime_lo
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/syft/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/driven_adapters/syft/syft.py,sha256=hP5MitHTeZf3Ia-xwi5bUdIU5hIwbUNuDSzcsqlxG5c,4457
 devsecops_engine_tools/engine_core/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_core/src/infrastructure/entry_points/entry_point_core.py,sha256=9SykudY1IljqXEho5hjRIwArsUfHueP4nJBXnSrbc14,2537
+devsecops_engine_tools/engine_core/src/infrastructure/entry_points/entry_point_core.py,sha256=BjA2jQfWpZrCfk9tpaZFL2A8dSKj26p-zIP61GBLqXk,2627
 devsecops_engine_tools/engine_core/src/infrastructure/helpers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/infrastructure/helpers/aws.py,sha256=wfy_PosHS0rrvkdiUYczxIcc8ZNwfqzWwqVxrmRTCBI,264
 devsecops_engine_tools/engine_core/src/infrastructure/helpers/util.py,sha256=lDtaozInb5m2R8Y-oGQasroksCRw_N_Ltz7gLkSguX8,380
@@ -89,6 +91,16 @@ devsecops_engine_tools/engine_dast/src/infrastructure/entry_points/entry_point_d
 devsecops_engine_tools/engine_dast/src/infrastructure/helpers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_dast/src/infrastructure/helpers/file_generator_tool.py,sha256=usSGuFYziitOj3aGa9ifvpfJ-J3qX4c0GXbPm3PmTnQ,2604
 devsecops_engine_tools/engine_dast/src/infrastructure/helpers/json_handler.py,sha256=qQkSO0EXguVGZN6hSb356sB0HS0ZdcjfXsnPelfUnyg,444
+devsecops_engine_tools/engine_integrations/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/applications/runner_engine_integrations.py,sha256=oynNsETemfPXG7bKTaQnH161-OkVySt_6brB2Oqh8m8,5594
+devsecops_engine_tools/engine_integrations/src/domain/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/domain/usecases/handle_integrations.py,sha256=lPGwUNN9Oth3uQp-akNSUkJWnkP_o03lvkv4MnCsnO8,1935
+devsecops_engine_tools/engine_integrations/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_integrations/src/infrastructure/entry_points/entry_point_integrations.py,sha256=RV2oynZVww4q9KeH8ISCpVTT7ZwbNy6F99MwIGk_B5A,1194
 devsecops_engine_tools/engine_risk/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_risk/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_risk/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -226,8 +238,8 @@ devsecops_engine_tools/engine_sca/engine_dependencies/src/applications/runner_de
 devsecops_engine_tools/engine_sca/engine_dependencies/src/deployment/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/deployment/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/ContextDependencies.py,sha256=wm_QYNrAWePWsn6YXBtHRriIp1mfx2awuitzuBRwd5o,376
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/context_dependencies.py,sha256=wm_QYNrAWePWsn6YXBtHRriIp1mfx2awuitzuBRwd5o,376
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/gateways/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/gateways/deserializator_gateway.py,sha256=A4WPW-cNMlitI7-P2L-W2hFUPvIU7Ejk6JxRJGATfwc,301
 devsecops_engine_tools/engine_sca/engine_dependencies/src/domain/model/gateways/tool_gateway.py,sha256=78WSYsEzt4394FEURSBmwV1pBztlORXaePFQ6GOZGGk,444
@@ -239,10 +251,10 @@ devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/__init_
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/dependency_check/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/dependency_check/dependency_check_deserialize.py,sha256=yT8C4bGIMii8XE8wnJW0bv6NI2DP-fpvGZTnG5H7gSg,8875
-devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/dependency_check/dependency_check_tool.py,sha256=5KF8gplfB0sqr9i9_dkmeiV6q-diyQWK7JjS59msY4w,7317
+devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/dependency_check/dependency_check_tool.py,sha256=jlz_6bAgCNPKqWgnPow6twOYYMf7ewUh5d1WPwHCrSk,7318
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/xray_tool/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/xray_tool/xray_deserialize_output.py,sha256=ZUk-e1PKzV7uRAT7BpET363pgl2eMnXMCGSpewsOpKg,2236
-devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/xray_tool/xray_manager_scan.py,sha256=kT4Qwahl4HKVMwwwB3mJS5JlIi2jv3ajGV_8zmGfnhs,11607
+devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/driven_adapters/xray_tool/xray_manager_scan.py,sha256=lYRl76dPzvfossuRJaRFGwTZNdC9wxJ23AivZdp9nhM,11608
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/entry_points/entry_point_tool.py,sha256=t2nAJ86ZyL6nz_tdrcWZ3cf5pnXhJ_q1AfVAbNhcrSk,3772
 devsecops_engine_tools/engine_sca/engine_dependencies/src/infrastructure/helpers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -324,19 +336,19 @@ devsecops_engine_tools/engine_utilities/sbom/deserealizator.py,sha256=6mFNI0B-MB
 devsecops_engine_tools/engine_utilities/sonarqube/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_utilities/sonarqube/src/applications/runner_report_sonar.py,sha256=NYXNgxjH-bzpBB0eOY-kaKX0ZqKyEakw2Khads3tRmo,4099
+devsecops_engine_tools/engine_utilities/sonarqube/src/applications/runner_report_sonar.py,sha256=FpCY8WUIa3N1LWTVDjy_ZG8-uOFfNnIJXydJjCPBTYM,1485
 devsecops_engine_tools/engine_utilities/sonarqube/src/domain/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/gateways/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/domain/model/gateways/sonar_gateway.py,sha256=mgycD3bzC_BYv7qT0tMLAro9hyNOvi4gJRzceYNF0t8,1339
 devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py,sha256=gXtkP3Ty4IoJpReWklVAGwuvxhqvrZUVThftOtTVYYo,10748
+devsecops_engine_tools/engine_utilities/sonarqube/src/domain/usecases/report_sonar.py,sha256=KJNOTqgxX-wCOJtD_LlyZt5Pp388_MzQO4IdQDcSIJ0,10912
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/sonarqube/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/driven_adapters/sonarqube/sonarqube_report.py,sha256=BpCLMgFQjytZc1HfZ5hXqX44E8T0JhLpAaNOVq5pFjo,4909
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/entry_points/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/entry_points/entry_point_report_sonar.py,sha256=72jwdpOuuvfT5ItBmBom30C968iEmvfOG422uvslyB8,2801
+devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/entry_points/entry_point_report_sonar.py,sha256=7Rw310PgVhnGyyltFZ4zvxnC78ukMKQBlMQhI5Z0owI,2790
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/helpers/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_utilities/sonarqube/src/infrastructure/helpers/utils.py,sha256=SGOWrkzQrvOt9bRhhSfgiMzj1695e1W0B9ox9C1ihQI,294
 devsecops_engine_tools/engine_utilities/ssh/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -350,8 +362,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
 devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
 devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
 devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=HCjS900TBoNcHrC4LaiP-Kf9frVdtagF130qOUgnO2M,6757
-devsecops_engine_tools-1.91.0.dist-info/METADATA,sha256=QJ5jedYf5bS8WEXFpXeV2lJ-SHn4XfT7PmhNywRQl-0,12093
-devsecops_engine_tools-1.91.0.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
-devsecops_engine_tools-1.91.0.dist-info/entry_points.txt,sha256=MHCTFFs9bdNKo6YcWCcBW2_8X6yTisgLOlmVx-V8Rxc,276
-devsecops_engine_tools-1.91.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
-devsecops_engine_tools-1.91.0.dist-info/RECORD,,
+devsecops_engine_tools-1.93.0.dist-info/METADATA,sha256=42BtV6Bz8Uq6qlx9r_987lu22T7LLOqIOD3teQoeX_M,12218
+devsecops_engine_tools-1.93.0.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
+devsecops_engine_tools-1.93.0.dist-info/entry_points.txt,sha256=OWAww5aBsGeMv0kWhSgVNB0ySKKpYuJd4dly0ikFPkc,283
+devsecops_engine_tools-1.93.0.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
+devsecops_engine_tools-1.93.0.dist-info/RECORD,,

devsecops_engine_tools-1.93.0.dist-info/entry_points.txt

@@ -0,0 +1,3 @@
+[console_scripts]
+devsecops-engine-tools = devsecops_engine_tools.engine_core.src.applications.runner_engine_core:application_core
+devsecops-engine-tools-integrations = devsecops_engine_tools.engine_integrations.src.applications.runner_engine_integrations:runner_engine_integrations

devsecops_engine_tools-1.91.0.dist-info/entry_points.txt

@@ -1,3 +0,0 @@
-[console_scripts]
-devsecops-engine-tools = devsecops_engine_tools.engine_core.src.applications.runner_engine_core:application_core
-devsecops-engine-tools.report-sonar = devsecops_engine_tools.engine_utilities.sonarqube.src.applications.runner_report_sonar:runner_report_sonar