In [None]:
'''
Copying all Repos that are functional and contain vulnerabilities
'''

import shutil
import os

# Define the paths for your folders
source_folder = "All HELM REPOS"
destination_folder = "Usable REPOS"
list_file = "repos_list.txt"  # The text file containing the names of the repos you want to copy

# Ensure destination folder exists
if not os.path.exists(destination_folder):
    os.makedirs(destination_folder)

# Read the list of repos from the text file
with open(list_file, 'r') as file:
    repos_to_copy = file.read().splitlines()

# Iterate over the list and copy the repositories
for repo_name in repos_to_copy:
    source_repo = os.path.join(source_folder, repo_name)
    destination_repo = os.path.join(destination_folder, repo_name)

    # Check if the repo exists before attempting to copy
    if os.path.exists(source_repo):
        try:
            shutil.copy(source_repo, destination_repo)
            print(f"Copied: {repo_name}")
        except Exception as e:
            print(f"Failed to copy {repo_name}: {e}")
    else:
        print(f"Repo not found: {repo_name}")

print("Copy operation complete.")

In [6]:
'''
Copying all Repos that contain a 'Security Context' in their values.yaml file
'''


import os
import tarfile
import yaml

# Recursive function to search for 'securityContext' in nested structures
def find_security_context(data):
    if isinstance(data, dict):
        if "securityContext" in data:
            return True
        for key, value in data.items():
            if find_security_context(value):
                return True
    elif isinstance(data, list):
        for item in data:
            if find_security_context(item):
                return True
    return False

# Paths
helm_repo_folder = "Usable REPOS"
success_file = "success.txt"
failure_file = "failure.txt"

# Initialize counts
success_count = 0
failure_count = 0

# Open result files
with open(success_file, 'w') as success_log, open(failure_file, 'w') as failure_log:
    # Iterate through each .tgz file in the folder
    for tgz_file in os.listdir(helm_repo_folder):
        if tgz_file.endswith(".tgz"):
            tgz_path = os.path.join(helm_repo_folder, tgz_file)

            try:
                # Open the tar.gz file
                with tarfile.open(tgz_path, 'r:gz') as tar:
                    found_values_yaml = False  # Variable to track if we've found the values.yaml

                    # Extract members to find values.yaml
                    for member in tar.getmembers():
                        if "values.yaml" in member.name and not found_values_yaml:
                            # Extract and read the values.yaml file
                            values_file = tar.extractfile(member)
                            if values_file:
                                values_yaml = yaml.safe_load(values_file)

                                # Ensure values_yaml is not None before checking for "securityContext"
                                if values_yaml and isinstance(values_yaml, dict):
                                    if find_security_context(values_yaml):
                                        success_count += 1
                                        success_log.write(f"{tgz_file}\n")
                                    else:
                                        failure_count += 1
                                        failure_log.write(f"{tgz_file}\n")
                                else:
                                    # Handle the case where the file could not be parsed or is empty
                                    failure_count += 1
                                    failure_log.write(f"{tgz_file} (Invalid or empty values.yaml)\n")
                                
                                found_values_yaml = True  # Mark that we've processed this repo
                                break  # Stop after processing the first values.yaml file
                    else:
                        # If no values.yaml file was found in the tar archive, mark it as a failure
                        failure_count += 1
                        failure_log.write(f"{tgz_file} (No values.yaml found)\n")
                        
            except Exception as e:
                # Log any errors encountered during processing
                failure_count += 1
                failure_log.write(f"{tgz_file} (Error: {str(e)})\n")

# Print final counts
print(f"Success count: {success_count}")
print(f"Failure count: {failure_count}")


Success count: 2452
Failure count: 3075


In [1]:
import os
import shutil

# Paths
usable_repos_folder = "Usable REPOS"  # Update this with the correct folder path
success_file = "success.txt"
new_folder = "SecurityContextRepos"  # Update this with the destination folder path

# Create the new folder if it doesn't exist
if not os.path.exists(new_folder):
    os.makedirs(new_folder)

# Read the success.txt file
with open(success_file, 'r') as file:
    successful_repos = file.read().splitlines()

# Copy each repository from the Usable REPOS folder to the new folder
for repo in successful_repos:
    repo_path = os.path.join(usable_repos_folder, repo)
    if os.path.exists(repo_path):
        shutil.copy(repo_path, new_folder)
        print(f"Copied {repo} to {new_folder}")
    else:
        print(f"Repository {repo} not found in {usable_repos_folder}")

print("Copy operation completed.")


Copied 12factor-22.5.11.tgz to path_to_your_new_folder
Copied 389ds-0.1.0.tgz to path_to_your_new_folder
Copied access-control-srv-0.1.15.tgz to path_to_your_new_folder
Copied access-manager-0.13.0.tgz to path_to_your_new_folder
Copied accounts-ui-v2023.10.18.tgz to path_to_your_new_folder
Copied ace-v2023.10.18.tgz to path_to_your_new_folder
Copied acestream-3.0.0.tgz to path_to_your_new_folder
Copied actions-runner-controller-0.23.5.tgz to path_to_your_new_folder
Copied activityrelay-1.0.31.tgz to path_to_your_new_folder
Copied adguard-0.12.tgz to path_to_your_new_folder
Copied adminui-0.15.0.tgz to path_to_your_new_folder
Copied adresservice-1.1.0.tgz to path_to_your_new_folder
Copied adventureworks-0.1.0.tgz to path_to_your_new_folder
Copied ae-1.1.44.tgz to path_to_your_new_folder
Copied aerospike-kubernetes-operator-3.0.0.tgz to path_to_your_new_folder
Copied aerospike-rest-client-0.1.0.tgz to path_to_your_new_folder
Copied agents-0.1.29.tgz to path_to_your_new_folder
Copied airs