PyPI - devsecops-engine-tools - Versions diffs - 1.95.1__py3-none-any.whl → 1.96.1__py3-none-any.whl - Mend

devsecops-engine-tools 1.95.1py3-none-any.whl → 1.96.1py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of devsecops-engine-tools might be problematic. Click here for more details.

Files changed (7) hide show

devsecops_engine_tools/version.py CHANGED Viewed

	@@ -1 +1 @@
1	- version = '1.95.1'
1	+ version = '1.96.1'

devsecops_engine_tools-1.96.1.dist-info/METADATA ADDED Viewed

@@ -0,0 +1,68 @@
+Metadata-Version: 2.1
+Name: devsecops-engine-tools
+Version: 1.96.1
+Summary: Tool for DevSecOps strategy
+Home-page: https://github.com/bancolombia/devsecops-engine-tools
+Author: Bancolombia DevSecOps Team
+Author-email: devsecops@bancolombia.com.co
+Classifier: Programming Language :: Python :: 3
+Classifier: License :: OSI Approved :: GNU Affero General Public License v3 or later (AGPLv3+)
+Classifier: Operating System :: OS Independent
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+Requires-Dist: requests==2.32.4
+Requires-Dist: PyYAML==6.0.2
+Requires-Dist: pyfiglet==0.8.post1
+Requires-Dist: prettytable==3.10.2
+Requires-Dist: azure-devops==7.1.0b4
+Requires-Dist: marshmallow==3.21.3
+Requires-Dist: pytz==2024.1
+Requires-Dist: python-decouple==3.8
+Requires-Dist: requests-toolbelt==1.0.0
+Requires-Dist: pexpect==4.9.0
+Requires-Dist: PyGithub==2.3.0
+Requires-Dist: distro==1.9.0
+Requires-Dist: boto3==1.34.157
+Requires-Dist: docker==7.1.0
+Requires-Dist: setuptools==75.3.2
+Requires-Dist: rich==13.9.4
+Requires-Dist: cpe==1.3.1
+Requires-Dist: packageurl-python==0.15.6
+Requires-Dist: ruamel.yaml==0.18.6
+Requires-Dist: Authlib==1.3.2
+Requires-Dist: PyJWT==2.9.0
+Requires-Dist: sympy==1.13.3
+Requires-Dist: urllib3<2.0.0
+Requires-Dist: holidays==0.58
+# DevSecOps Engine Tools
+[![Maintained by Bancolombia](https://img.shields.io/badge/maintained_by-Bancolombia-yellow)](#)
+[![Build](https://github.com/bancolombia/devsecops-engine-tools/actions/workflows/build.yml/badge.svg)](https://github.com/bancolombia/devsecops-engine-tools/actions/workflows/build.yml)
+[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=bancolombia_devsecops-engine-tools&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=bancolombia_devsecops-engine-tools)
+[![Coverage](https://sonarcloud.io/api/project_badges/measure?project=bancolombia_devsecops-engine-tools&metric=coverage)](https://sonarcloud.io/summary/new_code?id=bancolombia_devsecops-engine-tools)
+[![Python Version](https://img.shields.io/badge/python%20-%203.8%20%7C%203.9%20%7C%203.10%20%7C%203.11%20%7C%203.12%20-blue)](#)
+[![PyPI](https://img.shields.io/pypi/v/devsecops-engine-tools)](https://pypi.org/project/devsecops-engine-tools/)
+[![Docker Pulls](https://img.shields.io/docker/pulls/bancolombia/devsecops-engine-tools
+)](https://hub.docker.com/r/bancolombia/devsecops-engine-tools)
+# Objective
+Tool that unifies the evaluation of the different devsecops practices being agnostic to the devops platform, using both open source and market tools.
+# Communications channel
+Here are the channels we use to communicate about the project:
+**1. Mailing list:** You can join our mailing list to always be informed at the following link: [CommunityDevsecopsEngine](https://groups.google.com/g/CommunityDevsecopsEngine)
+**2. Email:** You can write to us by email:  MaintainersDevsecopsEngine@googlegroups.com
+# Getting Started
+Please follow our [Getting Started Guide](https://bancolombia.github.io/devsecops-engine-tools//docs/intro)
+# How can I help?
+Review the issues, we hear new ideas. Read more [Contributing](https://github.com/bancolombia/devsecops-engine-tools/blob/trunk/docs/CONTRIBUTING.md)

{devsecops_engine_tools-1.95.1.dist-info → devsecops_engine_tools-1.96.1.dist-info}/RECORD RENAMED Viewed

@@ -1,5 +1,5 @@
 devsecops_engine_tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-devsecops_engine_tools/version.py,sha256=Vf3nN8aO29k1IICyPdIQ3kRO7WdFXnlT9PsKAascD8s,19
+devsecops_engine_tools/version.py,sha256=LBVAGil7hyWOTKRGB2aLLwCTTZpZI-4ie-kSde7_7MM,19
 devsecops_engine_tools/engine_core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 devsecops_engine_tools/engine_core/src/applications/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
@@ -368,8 +368,8 @@ devsecops_engine_tools/engine_utilities/utils/name_conversion.py,sha256=ADJrRGax
 devsecops_engine_tools/engine_utilities/utils/printers.py,sha256=amYAr9YQfYgR6jK9a2l26z3oovFPQ3FAKmhq6BKhEBA,623
 devsecops_engine_tools/engine_utilities/utils/session_manager.py,sha256=Z0fdhB3r-dxU0nGSD9zW_B4r2Qol1rUnUCkhFR0U-HQ,487
 devsecops_engine_tools/engine_utilities/utils/utils.py,sha256=HCjS900TBoNcHrC4LaiP-Kf9frVdtagF130qOUgnO2M,6757
-devsecops_engine_tools-1.95.1.dist-info/METADATA,sha256=twSH9WqZzoZhWB-gVf73ur2wFmPIs1B9cYlktce8Ja8,12303
-devsecops_engine_tools-1.95.1.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
-devsecops_engine_tools-1.95.1.dist-info/entry_points.txt,sha256=OWAww5aBsGeMv0kWhSgVNB0ySKKpYuJd4dly0ikFPkc,283
-devsecops_engine_tools-1.95.1.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
-devsecops_engine_tools-1.95.1.dist-info/RECORD,,
+devsecops_engine_tools-1.96.1.dist-info/METADATA,sha256=PpdYMUcd56XFGS3N0UTejlmT8zI9vzgUrgJ9OeaDDLw,3211
+devsecops_engine_tools-1.96.1.dist-info/WHEEL,sha256=iAkIy5fosb7FzIOwONchHf19Qu7_1wCWyFNR5gu9nU0,91
+devsecops_engine_tools-1.96.1.dist-info/entry_points.txt,sha256=OWAww5aBsGeMv0kWhSgVNB0ySKKpYuJd4dly0ikFPkc,283
+devsecops_engine_tools-1.96.1.dist-info/top_level.txt,sha256=ge6y0X_xBAU1aG3EMWFtl9djbVyg5BxuSp2r2Lg6EQU,23
+devsecops_engine_tools-1.96.1.dist-info/RECORD,,

devsecops_engine_tools-1.95.1.dist-info/METADATA DELETED Viewed

@@ -1,318 +0,0 @@
-Metadata-Version: 2.1
-Name: devsecops-engine-tools
-Version: 1.95.1
-Summary: Tool for DevSecOps strategy
-Home-page: https://github.com/bancolombia/devsecops-engine-tools
-Author: Bancolombia DevSecOps Team
-Author-email: devsecops@bancolombia.com.co
-Classifier: Programming Language :: Python :: 3
-Classifier: License :: OSI Approved :: GNU Affero General Public License v3 or later (AGPLv3+)
-Classifier: Operating System :: OS Independent
-Requires-Python: >=3.8
-Description-Content-Type: text/markdown
-Requires-Dist: requests==2.32.4
-Requires-Dist: PyYAML==6.0.2
-Requires-Dist: pyfiglet==0.8.post1
-Requires-Dist: prettytable==3.10.2
-Requires-Dist: azure-devops==7.1.0b4
-Requires-Dist: marshmallow==3.21.3
-Requires-Dist: pytz==2024.1
-Requires-Dist: python-decouple==3.8
-Requires-Dist: requests-toolbelt==1.0.0
-Requires-Dist: pexpect==4.9.0
-Requires-Dist: PyGithub==2.3.0
-Requires-Dist: distro==1.9.0
-Requires-Dist: boto3==1.34.157
-Requires-Dist: docker==7.1.0
-Requires-Dist: setuptools==75.3.2
-Requires-Dist: rich==13.9.4
-Requires-Dist: cpe==1.3.1
-Requires-Dist: packageurl-python==0.15.6
-Requires-Dist: ruamel.yaml==0.18.6
-Requires-Dist: Authlib==1.3.2
-Requires-Dist: PyJWT==2.9.0
-Requires-Dist: sympy==1.13.3
-Requires-Dist: urllib3<2.0.0
-Requires-Dist: holidays==0.58
-# DevSecOps Engine Tools
-[![Maintained by Bancolombia](https://img.shields.io/badge/maintained_by-Bancolombia-yellow)](#)
-[![Build](https://github.com/bancolombia/devsecops-engine-tools/actions/workflows/build.yml/badge.svg)](https://github.com/bancolombia/devsecops-engine-tools/actions/workflows/build.yml)
-[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=bancolombia_devsecops-engine-tools&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=bancolombia_devsecops-engine-tools)
-[![Coverage](https://sonarcloud.io/api/project_badges/measure?project=bancolombia_devsecops-engine-tools&metric=coverage)](https://sonarcloud.io/summary/new_code?id=bancolombia_devsecops-engine-tools)
-[![Python Version](https://img.shields.io/badge/python%20-%203.8%20%7C%203.9%20%7C%203.10%20%7C%203.11%20%7C%203.12%20-blue)](#)
-[![PyPI](https://img.shields.io/pypi/v/devsecops-engine-tools)](https://pypi.org/project/devsecops-engine-tools/)
-[![Docker Pulls](https://img.shields.io/docker/pulls/bancolombia/devsecops-engine-tools
-)](https://hub.docker.com/r/bancolombia/devsecops-engine-tools)
-# Objective
-Tool that unifies the evaluation of the different devsecops practices being agnostic to the devops platform, using both open source and market tools.
-# Component
-📦 [tools](https://github.com/bancolombia/devsecops-engine-tools/tree/trunk/tools): DevSecOps Practice Modules
-# Communications channel
-Here are the channels we use to communicate about the project:
-**1. Mailing list:** You can join our mailing list to always be informed at the following link: [CommunityDevsecopsEngine](https://groups.google.com/g/CommunityDevsecopsEngine)
-**2. Email:** You can write to us by email:  MaintainersDevsecopsEngine@googlegroups.com
-# Getting started
-### Requirements
-- Python >= 3.8
-### Installation
-```bash
-pip3 install devsecops-engine-tools
-```
-### Scan running - flags (CLI)
-```bash
-devsecops-engine-tools --platform_devops ["local","azure","github"] --remote_config_source ["local","azure","github"] --remote_config_repo ["remote_config_repo"] --remote_config_branch ["remote_config_branch"] --module ["engine_iac", "engine_dast", "engine_secret", "engine_dependencies", "engine_container", "engine_risk", "engine_code"] --tool ["nuclei", "bearer", "checkov", "kics", "kubescape", "trufflehog", "gitleaks", "prisma", "trivy", "xray", "dependency_check"] --folder_path ["Folder path scan engine_iac, engine_code, engine_dependencies and engine_secret"] --platform ["k8s","cloudformation","docker", "openapi", "terraform"] --use_secrets_manager ["false", "true"] --use_vulnerability_management ["false", "true"] --send_metrics ["false", "true"] --token_cmdb ["token_cmdb"] --token_vulnerability_management ["token_vulnerability_management"] --token_engine_container ["token_engine_container"] --token_engine_dependencies ["token_engine_dependencies"] --token_external_checks ["token_external_checks"] --xray_mode ["scan", "audit","build-scan"] --image_to_scan ["image_to_scan"] --dast_file_path ["dast_file_path"] --context ["false", "true"] --terraform_repo_root ["terraform_files_repo"]
-```
-### Structure Remote Config
-[example_remote_config_local](https://github.com/bancolombia/devsecops-engine-tools/blob/trunk/example_remote_config_local/)
-```bash
-📦Remote_Config
-   ┣ 📂engine_core
-   ┃ ┗ 📜ConfigTool.json
-   ┣ 📂engine_risk
-   ┃ ┗ 📜ConfigTool.json
-   ┃ ┗ 📜Exclusions.json
-   ┣ 📂engine_dast
-   ┃ ┗ 📜ConfigTool.json
-   ┃ ┗ 📜Exclusions.json
-   ┣ 📂engine_sast
-   ┃ ┗ 📂engine_iac
-   ┃   ┗ 📜ConfigTool.json
-   ┃   ┗ 📜Exclusions.json
-   ┃ ┗ 📂engine_secret
-   ┃   ┗ 📜ConfigTool.json
-   ┃ ┗ 📂engine_code
-   ┃   ┗ 📜ConfigTool.json
-   ┃   ┗ 📜Exclusions.json
-   ┣ 📂engine_sca
-   ┃ ┗ 📂engine_container
-   ┃   ┗ 📜ConfigTool.json
-   ┃   ┗ 📜Exclusions.json
-   ┃ ┗ 📂engine_dependencies
-   ┃   ┗ 📜ConfigTool.json
-   ┃   ┗ 📜Exclusions.json
-   ┣ 📂engine_integrations
-   ┃ ┗ 📂report_sonar
-   ┃   ┗ 📜ConfigTool.json
-   ┃   ┗ 📜Exclusions.json
-```
-For more information visit [here](https://github.com/bancolombia/devsecops-engine-tools/blob/trunk/example_remote_config_local/README.md)
-#### Tools available for the modules (Configuration engine_core/ConfigTool.json)
-<table>
-  <tr>
-    <th>Module</th>
-    <th>Tool</th>
-    <th>Type</th>
-  </tr>
-    <tr>
-    <td>ENGINE_RISK</td>
-    <td><a href="https://defectdojo.com/">DEFECTDOJO</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td rowspan="3">ENGINE_IAC</td>
-    <td><a href="https://www.checkov.io/">CHECKOV</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td><a href="https://kubescape.io/">KUBESCAPE</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td><a href="https://www.kics.io/">KICS</a></td>
-    <td>Free</td>
-  </tr>
-   <tr>
-    <td>ENGINE_DAST</td>
-    <td><a href="https://projectdiscovery.io/nuclei">NUCLEI</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td rowspan="2">ENGINE_SECRET</td>
-    <td><a href="https://trufflesecurity.com/trufflehog">TRUFFLEHOG</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td><a href="https://gitleaks.io/">GITLEAKS</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td rowspan="2">ENGINE_CONTAINER</td>
-    <td><a href="https://www.paloaltonetworks.com/prisma/cloud">PRISMA</a></td>
-    <td>Paid</td>
-  </tr>
-  <tr>
-    <td><a href="https://trivy.dev/">TRIVY</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td rowspan="3">ENGINE_DEPENDENCIES</td>
-    <td><a href="https://jfrog.com/help/r/get-started-with-the-jfrog-platform/jfrog-xray">XRAY</a></td>
-    <td>Paid</td>
-  </tr>
-  <tr>
-    <td><a href="https://owasp.org/www-project-dependency-check/">DEPENDENCY CHECK</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td><a href="https://trivy.dev/">TRIVY</a></td>
-    <td>Free</td>
-  </tr>
-  <tr>
-    <td>ENGINE_CODE</td>
-    <td><a href="https://docs.bearer.com/quickstart/">BEARER</a></td>
-    <td>Free</td>
-  </tr>
-</table>
-### Scan running sample (CLI) - Local
-> Complete the value in **.envdetlocal** file a set in execution environment
-```
-$ set -a
-$ source .envdetlocal
-$ set +a
-```
-```bash
-devsecops-engine-tools --platform_devops local --remote_config_source local --remote_config_repo DevSecOps_Remote_Config --module engine_iac
-```
-![Demo CLI Local](docs/demo_session.svg)
-### Scan running sample (Docker)
-> Installation
-```bash
-docker pull bancolombia/devsecops-engine-tools
-```
-```bash
-docker run --rm -v ./folder_to_analyze:/folder_to_analyze bancolombia/devsecops-engine-tools:latest devsecops-engine-tools --platform_devops local --remote_config_source local --remote_config_repo docker_default_remote_config --module engine_iac --folder_path /folder_to_analyze
-```
-The docker image have it own default remote config with basic configuration called docker_default_remote_config, but you can define your own config and pass it as volume
-```bash
-docker run --rm -v ./folder_to_analyze:/folder_to_analyze -v ./custom_remote_config:/custom_remote_config bancolombia/devsecops-engine-tools:latest devsecops-engine-tools --platform_devops local --remote_config_source local --remote_config_repo custom_remote_config --module engine_iac --folder_path /folder_to_analyze
-```
-### Scan running sample - Azure Pipelines
-Note: If the remote configuration is in an Azure Devops repository. the tool gets the token from the SYSTEM_ACCESSTOKEN variable to get the remote configuration repository. You must ensure that this token has permission to access this resource.
-```yaml
-name: $(Build.SourceBranchName).$(date:yyyyMMdd)$(rev:.r)
-trigger:
-  branches:
-    include:
-      - trunk
-      - feature/*
-stages:
-  - stage: engine_tools
-    displayName: Example Engine Tools
-    jobs:
-      - job: engine_tools
-        pool:
-          name: Azure Pipelines
-        steps:
-          - script: |
-              # Install devsecops-engine-tools
-              pip3 install -q devsecops-engine-tools
-              devsecops-engine-tools --platform_devops azure --remote_config_source azure --remote_config_repo remote_config --module engine_iac
-            displayName: "Engine Tools"
-        env:
-          SYSTEM_ACCESSTOKEN: $(System.AccessToken)
-```
-### Scan running sample - Github Actions
-If remote config is in a GitHub repository, either public or private.
-**If the repository is public:**
-1. The yml file containing the workflow should be configured using the default secret **GITHUB_TOKEN**.
-For more information, refer to [Automatic token authentication](https://docs.github.com/en/actions/security-guides/automatic-token-authentication).
-**If the repository is private:**
-1. Create a personal access token with the necessary permissions to access the repository.
-2. Add the token as a secret in the GitHub repository.
-    ![Demo Github](docs/secret_token.png)
-3. Configure the yml file containing the workflow using the created secret.
-**Example of the workflow yml:**
-```yaml
-name: DevSecOps Engine Tools
-on:
-  push:
-    branches:
-      - feature/*
-env:
-  GITHUB_ACCESS_TOKEN: ${{ secrets.GH_ACCESSTOKEN }} #In this case, the remote config repository is private
-  # When the remote config repository is public, the secret should be like this: ${{ secrets.GITHUB_TOKEN }}
-jobs:
-  release:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-      - name: Set up Python
-        uses: actions/setup-python@v5
-        with:
-          python-version: "3.12"
-      - name: Set up Python
-        run: |
-          # Install devsecops-engine-tools
-          pip3 install -q devsecops-engine-tools
-          output=$(devsecops-engine-tools --platform_devops github --remote_config_source github --remote_config_repo remote_config --module engine_iac)
-          echo "$output"
-          if [[ $output == *"✘Failed"* ]]; then
-            exit 1
-          fi
-```
-# Metrics
-With the flag **--send_metrics true** and the configuration of the AWS-METRICS_MANAGER driven adapter in ConfigTool.json of the engine_core the tool will send the report to bucket s3. In the [metrics](https://github.com/bancolombia/devsecops-engine-tools/blob/trunk/metrics/) folder you will find the base of the cloud formation template to deploy the infra and dashboard in grafana.
-![Dashboard Grafana](docs/metrics.png)
-# Config Tool Generator
-To generate the ConfigTool.json file in a simple way, a web interface was created where you can configure each necessary parameter individually or use a base template that you want to modify. In the [config tool generator](https://github.com/bancolombia/devsecops-engine-tools/tree/trunk/remote_config_generator/config-tool-generator) folder you will find the code for the SPA created in Angular to run it local environment.
-![Config Tool Generator](docs/config_tool_generator.gif)
-# How can I help?
-Review the issues, we hear new ideas. Read more [Contributing](https://github.com/bancolombia/devsecops-engine-tools/blob/trunk/docs/CONTRIBUTING.md)

{devsecops_engine_tools-1.95.1.dist-info → devsecops_engine_tools-1.96.1.dist-info}/WHEEL RENAMED Viewed

File without changes

{devsecops_engine_tools-1.95.1.dist-info → devsecops_engine_tools-1.96.1.dist-info}/entry_points.txt RENAMED Viewed

File without changes

{devsecops_engine_tools-1.95.1.dist-info → devsecops_engine_tools-1.96.1.dist-info}/top_level.txt RENAMED Viewed

File without changes

devsecops-engine-tools 1.95.1__py3-none-any.whl → 1.96.1__py3-none-any.whl

Potentially problematic release.

devsecops-engine-tools 1.95.1py3-none-any.whl → 1.96.1py3-none-any.whl