Update Vorpal Name to ASCA(AST-65647) (#759)

* Update Vorpal Name to ASCA

* update ast-cli to pre-release version

* update ast-cli to pre-release version - 2

* Track Checkmarx CLI binaries with Git LFS

* Update checkmarx-ast-cli to 2.2.6

---------

Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: AlvoBen <144705560+AlvoBen@users.noreply.github.com>
Co-authored-by: AlvoBen <alvo@post.bgu.ac.il>

Author: 4 people

package-lock.json

@@ -1,4 +1,4 @@
-export default class VorpalScanDetail {
+export default class AscaScanDetail {
     ruleId: number;
     language: string;
     ruleName: string;

src/main/vorpal/VorpalScanDetail.ts renamed to src/main/asca/AscaScanDetail.ts

@@ -1,10 +1,10 @@
-import VorpalScanDetail from "./VorpalScanDetail";
+import AscaScanDetail from "./AscaScanDetail";
 
-export default class CxVorpal {
+export default class CxAsca {
     requestId: string;
     status: boolean;
     message: string;
-    scanDetails: VorpalScanDetail[];
+    scanDetails: AscaScanDetail[];
     error: any;
 
     constructor() {
@@ -15,16 +15,16 @@ export default class CxVorpal {
         this.error = null;
     }
 
-    static parseScan(resultObject: any): CxVorpal {
-        const scan = new CxVorpal();
+    static parseScan(resultObject: any): CxAsca {
+        const scan = new CxAsca();
         scan.requestId = resultObject.request_id;
         scan.status = resultObject.status;
         scan.message = resultObject.message;
         scan.error = resultObject.error;
 
         if (resultObject.scan_details instanceof Array) {
             scan.scanDetails = resultObject.scan_details.map((detail: any) => {
-                const scanDetail = new VorpalScanDetail();
+                const scanDetail = new AscaScanDetail();
                 scanDetail.ruleId = detail.rule_id;
                 scanDetail.language = detail.language;
                 scanDetail.ruleName = detail.rule_name;

src/main/vorpal/CxVorpal.ts renamed to src/main/asca/CxAsca.ts

@@ -65,9 +65,9 @@ export enum CxConstants {
     FORMAT_HTML_CLI = "summaryHTML",
     FILTER = "--filter",
     SCAN_ID = "--scan-id",
-    CMD_VORPAL = "vorpal",
+    CMD_ASCA = "asca",
     SOURCE_FILE = "--file-source",
-    VORPAL_UPDATE_VERSION = "--vorpal-latest-version",
+    ASCA_UPDATE_VERSION = "--asca-latest-version",
     PROJECT_ID = "--project-id",
     SIMILARITY_ID = "--similarity-id",
     QUERY_ID = "--query-id",
@@ -81,7 +81,7 @@ export enum CxConstants {
     ADDITONAL_PARAMS = "--additional-params",
     ENGINE = "--engine",
     SCAN_TYPE = "CxScan",
-    SCAN_VORPAL = "CxVorpal",
+    SCAN_ASCA = "CxAsca",
     PROJECT_TYPE = "CxProject",
     PREDICATE_TYPE = "CxPredicate",
     CODE_BASHING_TYPE = "CxCodeBashing",

src/main/wrapper/CxConstants.ts

@@ -147,11 +147,11 @@ export class CxWrapper {
         return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_TYPE);
     }
 
-    async scanVorpal(sourceFile: string, updateVersion = false, agent?: string | null): Promise<CxCommandOutput> {
-        const commands: string[] = [CxConstants.CMD_SCAN, CxConstants.CMD_VORPAL, CxConstants.SOURCE_FILE, sourceFile];
+    async scanAsca(sourceFile: string, updateVersion = false, agent?: string | null): Promise<CxCommandOutput> {
+        const commands: string[] = [CxConstants.CMD_SCAN, CxConstants.CMD_ASCA, CxConstants.SOURCE_FILE, sourceFile];
 
         if (updateVersion) {
-            commands.push(CxConstants.VORPAL_UPDATE_VERSION);
+            commands.push(CxConstants.ASCA_UPDATE_VERSION);
         }
         if (agent) {
             commands.push(CxConstants.AGENT);
@@ -165,7 +165,7 @@ export class CxWrapper {
 
         commands.push(...this.initializeCommands(false));
         const exec = new ExecutionService();
-        return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_VORPAL);
+        return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_ASCA);
     }
 
     async scanCancel(id: string): Promise<CxCommandOutput> {

src/main/wrapper/CxWrapper.ts

@@ -22,7 +22,7 @@ import CxKicsRemediation from "../remediation/CxKicsRemediation";
 import CxScaRealTime from "../scaRealtime/CxScaRealTime";
 import CxChat from "../chat/CxChat";
 import CxMask from "../mask/CxMask";
-import CxVorpal from "../vorpal/CxVorpal";
+import CxAsca from "../asca/CxAsca";
 
 let skipValue = false;
 const fileSourceFlag = "--file-source"
@@ -200,9 +200,9 @@ export class ExecutionService {
                   const scans = CxScan.parseProject(resultObject);
                   cxCommandOutput.payload = scans;
                   break;
-                case CxConstants.SCAN_VORPAL:
-                    const vorpal = CxVorpal.parseScan(resultObject);
-                    cxCommandOutput.payload = [vorpal];
+                case CxConstants.SCAN_ASCA:
+                    const asca = CxAsca.parseScan(resultObject);
+                    cxCommandOutput.payload = [asca];
                     break;
                 case CxConstants.PROJECT_TYPE:
                   const projects = CxProject.parseProject(resultObject);

src/main/wrapper/ExecutionService.ts

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:84c22ba2aac3a10fdbcdc4a497b90b1f19cfac05903734726505f3f07d651c42
+size 66171032

src/main/wrapper/resources/cx-linux

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:17d7887c19d7cae0b63c62eaa7f17ef85a1726ae4e9ab62405d73346de450875
+size 134051856

src/main/wrapper/resources/cx-mac

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:71cad5fe4002448c9b9af6c8f9e61edb85c182186ac834a4300ba846b26612f7
+size 67934600

src/main/wrapper/resources/cx.exe

@@ -1,14 +1,12 @@
+import { CxWrapper } from '../main/wrapper/CxWrapper';
 import { CxCommandOutput } from "../main/wrapper/CxCommandOutput";
 import { CxParamType } from "../main/wrapper/CxParamType";
 import { BaseTest } from "./BaseTest";
-import CxWrapperFactory from "../main/wrapper/CxWrapperFactory";
-
-const cxWrapperFactory = new CxWrapperFactory();
 
 describe("ScanCreate cases", () => {
     const cxScanConfig = new BaseTest();
     it('ScanList Successful case', async () => {
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await auth.scanList("");
         console.log(" Json object from scanList successful case: " + JSON.stringify(cxCommandOutput));
         expect(cxCommandOutput.payload.length).toBeGreaterThan(1);
@@ -22,7 +20,7 @@ describe("ScanCreate cases", () => {
         params.set(CxParamType.FILTER, "*.ts,!**/node_modules/**/*");
         params.set(CxParamType.BRANCH, "master");
         params.set(CxParamType.SCAN_TYPES,"kics");
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await auth.scanCreate(params);
         const scanObject = cxCommandOutput.payload.pop();
         const scanShowObject = await auth.scanShow(scanObject.id);
@@ -37,7 +35,7 @@ describe("ScanCreate cases", () => {
         params.set(CxParamType.SAST_PRESET_NAME, "Checkmarx Default Fake");
         params.set(CxParamType.BRANCH, "master");
         params.set(CxParamType.SCAN_TYPES, "sast");
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await auth.scanCreate(params);
         const scanObject = cxCommandOutput.payload.pop();
         const scanShowObject = await auth.scanShow(scanObject.id);
@@ -52,7 +50,7 @@ describe("ScanCreate cases", () => {
         params.set(CxParamType.FILTER, "*.ts,!**/node_modules/**/*");
         params.set(CxParamType.BRANCH, "master");
         params.set(CxParamType.ADDITIONAL_PARAMETERS, "--scan-types sast");
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await auth.scanCreate(params);
         const scanObject = cxCommandOutput.payload.pop();
         const scanShowObject = await auth.scanShow(scanObject.id);
@@ -68,7 +66,7 @@ describe("ScanCreate cases", () => {
         params.set(CxParamType.SAST_PRESET_NAME, "Checkmarx Default Fake");
         params.set(CxParamType.ADDITIONAL_PARAMETERS, "--async");
         params.set(CxParamType.BRANCH, "master");
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await auth.scanCreate(params);
         const scanObject = cxCommandOutput.payload.pop();
         const scanShowObject = await auth.scanShow(scanObject.id);
@@ -83,7 +81,7 @@ describe("ScanCreate cases", () => {
         params.set(CxParamType.BRANCH, "master");
         params.set(CxParamType.FILTER, "*.ts,!**/node_modules/**/*");
         params.set(CxParamType.ADDITIONAL_PARAMETERS, "--async");
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await auth.scanCreate(params);
         const scanObject = cxCommandOutput.payload.pop();
         await auth.scanCancel(scanObject.id)
@@ -92,7 +90,7 @@ describe("ScanCreate cases", () => {
     })
 
     it('KicsRealtime Successful case ', async () => {
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const [outputProcess,pid] = await auth.kicsRealtimeScan("dist/tests/data/Dockerfile","docker","-v");
         const cxCommandOutput: CxCommandOutput = await outputProcess;
         console.log(" Json object from successful no wait mode case: " + JSON.stringify( cxCommandOutput.payload));
@@ -103,7 +101,7 @@ describe("ScanCreate cases", () => {
     })
 
     it('ScaRealtime Successful case', async () => {
-        const wrapper = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const wrapper = new CxWrapper(cxScanConfig);
         const cxCommandOutput: CxCommandOutput = await wrapper.runScaRealtimeScan(process.cwd());
         if(cxCommandOutput.exitCode == 1) {
             expect(cxCommandOutput.payload).toBeUndefined();
@@ -115,58 +113,58 @@ describe("ScanCreate cases", () => {
 
     it("Should check if scan create is possible", async() => {
         const cxScanConfig = new BaseTest();
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const tenantSettings: boolean = await auth.ideScansEnabled();
         expect(tenantSettings).toBeDefined();
     })
 
     it("Should check if AI guided remediation is active", async() => {
         const cxScanConfig = new BaseTest();
-        const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
+        const auth = new CxWrapper(cxScanConfig);
         const aiEnabled: boolean = await auth.guidedRemediationEnabled();
         expect(aiEnabled).toBeDefined();
     })
 
-    // it('ScanVorpal fail case Without extensions', async () => {
-    //     const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
-    //     const cxCommandOutput: CxCommandOutput = await auth.scanVorpal("tsc/tests/data/python-file");
-    //     console.log(" Json object from failure case: " + JSON.stringify(cxCommandOutput));
-    //
-    //     expect(cxCommandOutput.payload[0].error.description).toEqual("The file name must have an extension.");
-    //     expect(cxCommandOutput.exitCode).toBe(0);
-    //     expect(cxCommandOutput.payload[0].status).toBeUndefined();
-    // });
-
-    // it('ScanVorpal Successful case', async () => {
-    //     const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
-    //     const cxCommandOutput: CxCommandOutput = await auth.scanVorpal("tsc/tests/data/python-vul-file.py");
-    //     console.log("Json object from scanVorpal successful case: " + JSON.stringify(cxCommandOutput));
-    //     const scanObject = cxCommandOutput.payload.pop();
-    //     expect(cxCommandOutput.payload).toBeDefined();
-    //     expect(cxCommandOutput.exitCode).toBe(0);
-    //     expect(scanObject.status).toEqual(true);
-    // });
-    //
-    // it('ScanVorpal with complex name Successful case', async () => {
-    //     const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
-    //     const cxCommandOutput: CxCommandOutput = await auth.scanVorpal("tsc/tests/data/var express = require('express';.js");
-    //     console.log("Json object from scanVorpal successful case: " + JSON.stringify(cxCommandOutput));
-    //     const scanObject = cxCommandOutput.payload.pop();
-    //     expect(cxCommandOutput.payload).toBeDefined();
-    //     expect(cxCommandOutput.exitCode).toBe(0);
-    //     expect(scanObject.status).toEqual(true);
-    // });
-    //
-    // it('ScanVorpal Successful case with update version', async () => {
-    //     const auth = await cxWrapperFactory.createWrapper(cxScanConfig);
-    //     const cxCommandOutput: CxCommandOutput = await auth.scanVorpal("tsc/tests/data/python-vul-file.py", true);
-    //     console.log("Json object from scanVorpal successful case with update version: " + JSON.stringify(cxCommandOutput));
-    //     const scanObject = cxCommandOutput.payload.pop();
-    //     expect(cxCommandOutput.payload).toBeDefined();
-    //     expect(cxCommandOutput.exitCode).toBe(0);
-    //     expect(scanObject.status).toEqual(true);
-    //     expect(Number.isInteger(scanObject.scanDetails[0].line)).toBe(true);
-    //     expect(typeof scanObject.scanDetails[0].description).toBe('string');
-    // });
+    it('ScanAsca fail case Without extensions', async () => {
+        const auth = new CxWrapper(cxScanConfig);
+        const cxCommandOutput: CxCommandOutput = await auth.scanAsca("tsc/tests/data/python-file");
+        console.log(" Json object from failure case: " + JSON.stringify(cxCommandOutput));
+
+        expect(cxCommandOutput.payload[0].error.description).toEqual("The file name must have an extension.");
+        expect(cxCommandOutput.exitCode).toBe(0);
+        expect(cxCommandOutput.payload[0].status).toBeUndefined();
+    });
+
+    it('ScanAsca Successful case', async () => {
+        const auth = new CxWrapper(cxScanConfig);
+        const cxCommandOutput: CxCommandOutput = await auth.scanAsca("tsc/tests/data/python-vul-file.py");
+        console.log("Json object from scanAsca successful case: " + JSON.stringify(cxCommandOutput));
+        const scanObject = cxCommandOutput.payload.pop();
+        expect(cxCommandOutput.payload).toBeDefined();
+        expect(cxCommandOutput.exitCode).toBe(0);
+        expect(scanObject.status).toEqual(true);
+    });
+
+    it('ScanAsca with complex name Successful case', async () => {
+        const auth = new CxWrapper(cxScanConfig);
+        const cxCommandOutput: CxCommandOutput = await auth.scanAsca("tsc/tests/data/var express = require('express';.js");
+        console.log("Json object from scanAsca successful case: " + JSON.stringify(cxCommandOutput));
+        const scanObject = cxCommandOutput.payload.pop();
+        expect(cxCommandOutput.payload).toBeDefined();
+        expect(cxCommandOutput.exitCode).toBe(0);
+        expect(scanObject.status).toEqual(true);
+    });
+
+    it('ScanAsca Successful case with update version', async () => {
+        const auth = new CxWrapper(cxScanConfig);
+        const cxCommandOutput: CxCommandOutput = await auth.scanAsca("tsc/tests/data/python-vul-file.py", true);
+        console.log("Json object from scanAsca successful case with update version: " + JSON.stringify(cxCommandOutput));
+        const scanObject = cxCommandOutput.payload.pop();
+        expect(cxCommandOutput.payload).toBeDefined();
+        expect(cxCommandOutput.exitCode).toBe(0);
+        expect(scanObject.status).toEqual(true);
+        expect(Number.isInteger(scanObject.scanDetails[0].line)).toBe(true);
+        expect(typeof scanObject.scanDetails[0].description).toBe('string');
+    });
 
 });