Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Feature/api (#1) * Adding core base project * Adding route of health * Fix lint fmt and imports, Add handler of analysis * Upgrade script to lint and fmt * Fix makefile and golangcilint * Adding analysis test Co-authored-by: nathanmartinszup <nathan.martins@zup.com.br> * Finish api service (#2) * Adding controller of analysis without get workspace and repository * Adding logic to separate rules of repositories * Adding more tests and fix responses * Fix default port * Fix fmt lint * Adding more tests and fix problems of not create new analysis * Fix swagger * Fix swagger docs * Adding pipelines and base of vulnerability service (#3) * Adding pipelines and base of vulnerability service * Update pipelines * Fixing pipelines * Fix pipeline * Feature/core (#4) * Adding core base project * Adding base project * Adding unity tests and create route * Adding swagger * Adding more workspace methods * Adding missing workspace methods and * Removing validation utils * Fixing some errors and improving code * Adding workspace unity tests * Adding controller tests * Adding workspace handler tests * Fixing unity test * Adding repository entities, controller, repository and handler * Improving code and fixing errors * Adding repositories and usecases tests * Adding create unity tests * Adding repository get * Adding get unity tests * Adding update repository * Update unity tests * Adding delete repository and tests * Adding list repositories methods * Adding list unity tests * Adding update repository role * Adding update role unity tests * Adding invite repository methods * Adding method to get all users of repository * Adding get repository user tests * ADding api to remove user from repository * Adding workspace groups in repository if empty * Fixing some errors * Adding create token api * Adding create token unity tests * Adding api to delete workspace token * Adding api to list workspace tokens * Adding repository token apis * Adding token repository tests * Updating coverage * Fixing fmt error Co-authored-by: wilian <wilian.silva@zup.com.br> * Feature/vulnerability (#5) * Adding handler of management of vulnerability * Adding route for list all vulnerabilities * Fix swagger and start use cases on vulnerability * Updating swagger and tests * Adding more unit tests * Adding new route of update vulnerability * Fix swagger * Fix middleware * Fix pipeline * Fix pipeline * Feature/analytic (#6) * Adding base of analytic service * Adding all routes of analytic and update swagger * Adding structure of handlers and useCases * Adding unit tests * Adding pipeline * Adding logic to getting content of dashboard * Adding analysis refactor * Adding analytic and broker config * Upgrade devkit on services execpt analytic * Fix lint and fmt in project * Fix get dash * Fix dashboard get dashboard and save analytic content * Finish all queries and validations without tests * Scripts * add analytic tests * Fix * Adding more unit tests * Fix fmt lint * Adding more unit tests * Adding analytic pipeline * Update horusec-config * Fix * Adding broker on health check * Feature/auth (#7) * Adding base auth service * Adding horusec login api * Adding ldap authentication type * Adding horusec auth request validation * Fixing lint errors * Adding keycloak service * Fixing lint errors * Adding horusec auth unity tests * Adding keycloak tests * Fixing lint errors * Adding ldap login tests * Adding ldap is authorized tests * Adding auth grpc methods * Adding entities tests * Adding repository tests * Adding use cases tests * Adding missing services unity tests * Fixing some errors and adding tests * Adding missing unity tests * Fixing file name * Adding missing tests and coverage * Adding account controller and fixing some issues * Adding create account keycloak * Adding account operations * Adding account operations * Adding api to update account * Adding account swagger * Fixing tests * Adding account usecases tests * Adding account repository tests * Adding account unity test * Adding account handler tests * Adding controller tests * Updating total coverage * Adding health check and fixing pipeline errors * Adding horusec config file * Updating config files * Fixing errors * Adding auth pipeline * Adding auth pipeline * Fixing pipeline * Fixing pipeline * Improving auth pipeline * Testing pipeline * Testing pipeline * Core Admin (#9) * Updating pipelines * Adding application admin rules * Adding default users * Fixing auth pipeline * Fixing application authorization rules * Fixing lint errors * Fixing pipeline file error * Feature/docker images compose (#10) * Adding api docker files and improving pipeline * Fixing pipeline name * Adding auth dockerfiles * Adding core dockerfiles * Improving analytic pipeline and adding dockerfiles * Adding vulnerability dockerfile and improving pipeline * Adding compose dev * Feature/core health check (#12) * Adding core health check * Fixing some errors * Update devkit (#13) * Update devkit * Fix coverage auth * Feature/up devkit (#14) * Fix devkit version * Update devkit on services * Feature/messages (#16) * Adding messages service * ADding pipeline * Fixing lint errors and improving code * Adding dockerfiles and compose dev * Code base of Manager (#11) * Added code base of horusec manager * Added manager pipeline * Feature/webhook (#15) * Adding base of webhook service * Adding workflow pipeline * Adding some unit tests * Adding unit tests * Finish all application * Fixing lint error, adding missing unity testa and improving code * Fixing compose dev errors * Change style in severity select and fix filter for (#18) * Update port analytic * [WIP]bufix/integration-errors (#20) * Fixing some issues found during integration with manager * Updating auth coverage * Core and Auth new integrations on Manager. (#19) * Integration with core and auth services * Unify company and repositories services into core service * Adjusting ports of services * Fixing error in invite user to workspace (#21) * Added integration with vulnerabilities service with manager (#22) * Feature/vulnerabilities (#23) * Adding many corrections * Fixing error while veryfing workspace admin in repository * Fixing imports * Fix some error on vulnerability service * Update go.mod packages * Fix imports fmt and lint Co-authored-by: nathanmartinszup <nathan.martins@zup.com.br> * Update swagger analytic * Fixing some errors found while testing ldap * Fixing unity tests * Bugfix/fixing ldap errors (#24) * Fixing some errors found while testing ldap * Fixing unity tests * WIP: Services migration (#17) * Removinb analytic migration delete the analytic migration path to use devkit instead * Adding migrations dockerfile * Adding migrate script * Fixing migrate sh file * Moving migrations to project root * Adding migrations pipeline * Adding migrations pipeline * Adding sh vuln as risk accepted * Fix dashboard * Fix compose * Adding analytic database (#26) * Adding update when already exists vulnerability on database (#29) * Bugfix/block add workspace button for non admins user (#28) * add check on buttons * add message for application admin false * Update manager/src/pages/Internal/Workspaces/index.tsx Co-authored-by: nathannascimentozup <65020170+nathannascimentozup@users.noreply.github.com> * Analytic manager integration (#31) * Added API for request in analytic * Alter route to dashboard * Fixing database for compose-dev of analytic * Added integration with first charts * Added integration with all charts * Addes hash of risk accepted vuln * hotfix/manager issues (#27) * Added API for request in analytic * Alter route to dashboard * Fixing database for compose-dev of analytic * Added integration with first charts * Adding analytic database * Fixing new password form * Fixing new account form * wip: Fixing repositories refresh * Adding useListState hook * Fixing repositories screen * Fixing vulnerabilities duplicate row key * Adding vulnerabilities file, line and column in description * Fixing workspace dashboard filter * Added integration with all charts * Addes hash of risk accepted vuln * Fixing dashboard repository filter * Fixing dashboard page * Removing unecessary log Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * Feature/all in one image (#30) * Fixing some errors found while testing ldap * Fixing unity tests * Adding all in one dockerfile * Adding all in one sh and dockerfile * Adding some improvements * Updating broker env var name * Alter disabeBroker for disableEmails in manager * Updating all in one env var Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * Feature/update vuln analytic (#33) * Adding update when already exists vulnerability on database * Adding publish to analytic when update vulnerability * Adding publish to analytic when update vulnerability * Adding publish queue to update on the analytic * Fix vuln service * Fix update vulnerabilities * Fix pipelines * Fix some error on middleware of webhook * Fix dashboard by time * Dashboard adjusts (#35) * Adjusting charths of dashboard * Removing console.log * Updating all in one entrypoint * Fix webhook (#25) * Fix webhook * remove ENDPOINT_API * Updating webhook cors * Fixing routes of webhook service in manager * hotfix/manager issues (#27) * Added API for request in analytic * Alter route to dashboard * Fixing database for compose-dev of analytic * Added integration with first charts * Adding analytic database * Fixing new password form * Fixing new account form * wip: Fixing repositories refresh * Adding useListState hook * Fixing repositories screen * Fixing vulnerabilities duplicate row key * Adding vulnerabilities file, line and column in description * Fixing workspace dashboard filter * Added integration with all charts * Addes hash of risk accepted vuln * Fixing dashboard repository filter * Fixing dashboard page * Removing unecessary log Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * Feature/all in one image (#30) * Fixing some errors found while testing ldap * Fixing unity tests * Adding all in one dockerfile * Adding all in one sh and dockerfile * Adding some improvements * Updating broker env var name * Alter disabeBroker for disableEmails in manager * Updating all in one env var Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * Feature/update vuln analytic (#33) * Adding update when already exists vulnerability on database * Adding publish to analytic when update vulnerability * Adding publish to analytic when update vulnerability * Adding publish queue to update on the analytic * Fix vuln service * Fix update vulnerabilities * Fix pipelines * Fix some error on middleware of webhook * Integration with webhook api Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> Co-authored-by: nathanmartinszup <nathan.martins@zup.com.br> Co-authored-by: nathannascimentozup <65020170+nathannascimentozup@users.noreply.github.com> Co-authored-by: nathanmartinszup <63246935+nathanmartinszup@users.noreply.github.com> Co-authored-by: Wilian Gabriel <63816070+wiliansilvazup@users.noreply.github.com> Co-authored-by: wilian <wilian.silva@zup.com.br> * Fix vulnerability publish on broker * Fixing repository chart (#34) * Fixing repository chart * Removing unnecessary log * Adding repository bar chart * Fixing analytic lint problem * Manager improvees for the version 2 (#37) * Added header bar in internal screen and new settings screen * Remake side menu * Feature/helm (#39) * Fix * Adding helm files * Fixing error in webhook helm * Updating devkit Co-authored-by: wilian <wilian.silva@zup.com.br> * Adding appliacation admin as workspaces owner (#38) * Adding appliacation admin as all workspace owner * Fixing application addmin access * Fixing application admin * Reverting compose dev * Fixing repositories actions * Updating security pipeline * Fixing compose-dev Co-authored-by: nathanmartinszup <nathan.martins@zup.com.br> * Fix unknown on update vulnerability * change the display of actions (#40) * change the display of actions * fix tab index * Various small bugs in manager (#41) * Fixing URL validation in webhook screen, adjusting seleted effect of side menu and when get workspace failed, redirect do /add-workspace * Update index.tsx Co-authored-by: Lucas Garcia Santos <78167170+lucasgarciazup@users.noreply.github.com> * add popupstate (#43) * Fixing some errors (#44) * Fixing migrations build in makefile * Feature/analytic upgrade (#36) * Adding analytic migrate cmd * Adding migrate cmd fetch analysis * Adding migrate broker publisher * Removing migrate broker dependency * Adding analytic old data migration insertion * Adding analytic migrate error feedbacks * Updating make install to not drop databae * Fixing dashboard by time * Removing code comment * Adding migrate bin in analytic image * Adding analytic migration transaction * Fixing ordenation * Adding migration counter * Improving range * Adding migrate feedback * Fixing transaction * Adding visual feedback * Adding migration summary * Adding migration export error log file * Fixing migration error log file name * Adding no lint * Ignoring migrate files * Fixing analysis test * Testing coverage * fix bug (#46) * Repositories context manager (#45) * Change color of workspace * Add context for repositories * Fixing repositories list * Fix Co-authored-by: wilian <wilian.silva@zup.com.br> * Feature/upgrade versions (#47) * Upgrade scripts to create rc * Update security * Fix update * Fix makefile * Update Coverage * Updating versions files and semver * V2 helm (#48) * Adding analytic database uri * Fixing core migration * Fixing api migration * Fixing migrations * Adding analytic migration * Fixing vulnerability migration * Adding analytic migration * Adding migrate hook * Adding migrate hook * Fixing analytic hook * Removing unnecessary compose * Feature/fixing tests errors (#49) * Fixing some permissions errors and routes that were not in rest pattern * Fixing front routes * Fixing permission for repositorie dashboard * Fixing erro in list repositories query * Updating compose dev sleep in makefile * Removing second postgresql from composes Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * Fixing some issues in permisison level * Added option in BarChart component to transform in Vertical bars (#50) * Analytic manager improvees (#52) * Fixing route to update vulnerabilities, improve charts * Fixing route to get all vulnerabilities * Updating env var name in compose files Co-authored-by: nathanmartinszup <nathan.martins@zup.com.br> * Added option to set workspace as favorite (#53) * Updating go modules with the new devkit version * Added rule to ignore role when set as null workspace (#54) * Fix chart of vuln by time * Adding lisence files * adding migrate-up on compose dev * fix form reset after submit (#58) * Bugfix/production manager (#59) * Adding build production and adding cypress on dockerignore * Fix test * Fix lint * Fix on migrations and Helm adjustments for new version (#57) * Fixing migragte command * Fixing migragte command * Update to latest image tag * Renaming old references to account service * Adapting broker host accordingly with other charts * Fix service account configurations * Missing readiness and liveness probes * Add's command to Docker image build * Fix the auth healthcheck path * Add's missing environment variable * Fixing migrate * Updating the default webhook Ingress Co-authored-by: Nathan Tavares Nascimento <nathan.nascimento@zup.com.br> * change display calendar (#60) * change display calendar * Merge with develop * fix lint Co-authored-by: wilian <wilian.silva@zup.com.br> * Fetch repositories when exit workspace screen (#55) * Added fetch all repositories when exit of repositories screen * Added hash of vuln * Fix lint Co-authored-by: wilian <wilian.silva@zup.com.br> * feature/readme (#51) * Updating scripts url to use main branch * Adding readme shields * Fixing logo src * Adding readme topics * Adding install with compose and quick run * Improving install text * Updating readme * Adding readme images * Fixing image size * Minor fixes * Fixing makefile error * Fixing error in all-in-one * Updating readme * Fix grcp to grpc Co-authored-by: wilian <wilian.silva@zup.com.br> * Change analysis to timestamp and change vulnerability for response with some last analysis created (#62) * Fix compose and helm env values (#64) * Fix compose env * Fix compose and helm values * Fix return name of repository on list webhook and migration of vuln hash (#63) * Adding repository on list all webhooks * Fix return name of repository on list webhook * Adding migration of hashes * Fix lint * Fix some name * Fix folder name * Fixing requests with workspaceID undefined (#65) * Feature/migration analytic v2 (#61) * Improving analytic v2 script * Improving analytic v2 script * Improving code and fixing some analytic errors * Fixing some more errors and code improvements * Updating dashboard serach query * Fixing more errors * Updating queries * Improving dashboard queries * Improving code and fixing some errors * Fixing error in chart by time * Fixing error in chart by language * Fixing vuln by time chart query * Fixing error when update vulnerability * Fixing analytic tests * Fixing analytic lint errors * Fixing migration v2 lint errors * Fixing security pipeline * Updating migrations script and fixing errors * Removing distinct on in by language query * Adding vulnerability id to avoid duplicated * Fixing error in chart by language and author * Fixing error in chart by language and author * Fixing error in chart by language * Updating go modules and fixing some readme errors (#67) * Fixing refresh token flow in manager (#66) * Updating migration v2 env vars * Hotfix/analytic data migration (#68) * Updating vulnerability service devkit version * Fixing old database uri * Hotfix/analytic hash (#69) * Updating vulnerability service devkit version * Adding api migrate v1 to v2 hook * Fix versions in yaml * Added a11y in dashboard (#71) * Replacing Helm Charts (#74) * Replacing Helm Charts * Ingress rules * Fix manager addresses * Add TLS certificates on Ingress * Fix image repositories * Add missing Auth configurations * Fix the migration database address * Add missing broker configurations * Configurable Migration image * Fix config * Feature/update many vulnerabilities (#75) * Improving code and fixing some errors * Fixing lint errors * Fixing pipeline errors * Changing patch api to update many vulnerabilities at once * Updating manager pipeline * Fixing security pipeline * implement update many vuln * Fixing minor issues * integrate with api * Fixing some analytic issues * Fixing manager pipeline * Adding vuln update table highlight * Adding update vulnerabilitiy count Co-authored-by: Lucas Garcia <lucas.garcia@zup.com.br> Co-authored-by: Nathan Tavares Nascimento <nathan.nascimento@zup.com.br> * Fixing error when publishin a new analysis event (#78) Co-authored-by: Nathan Tavares Nascimento <nathan.nascimento@zup.com.br> * Fix components addresses (#77) * Fix full components addresses * Fix environment variable for Core endpoint * Fix Nginx configuration of Core endpoint * Fix migrations Jobs Co-authored-by: Nathan Tavares Nascimento <nathan.nascimento@zup.com.br> * Improvement manager responsiveness (#82) * Option to minimize and maxime the side menu * Fixing lint * Alter dahsboard layout to grid display * Added hash for false positive audit * manager path verify (#84) * Added verification of path with includes * Include hash in the false positive * [WIP] Feature/export json-pdf (#80) * create actions export * add loading i18n * xlsx formatter download * fix lint * fix variavel names * change config download pdf * fix lint * Delete package-lock.json * Added package-lock * Reset false positives hash of manager * Fixing vulnerabilities with valid hashs Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * [skip ci] Update versioning file * Feature/horusec platfrom helm (#85) * Add sed vulnerability and webhook * Update horusec-platform helm chart * Update * Update TLS * Add tls: null * Update README * upgrade horusec-config.json * Fix latest version * change text i18n export (#88) * Add uri.scheme (#89) * Manager issues a11y in v2 dashboard (#91) * Fixing npm audit issues * Fixing hashs of vulns * Fixing slow animation when resize side menu * Removing global will change * Fixinf a11y issues on dahboard * Add hash of vulnerabilities * improvement css and add Table MatUi component (#94) * Feature/dependency check (#97) * Adding owasp dependency check tool * Updating devkit version * Feature/change env variable names (#95) * change var names * add compatibility with horus v1 and v2 * Update horusec-config.json * Upgrade semver * [skip ci] Update versioning file * Feature/improvement in table component (#96) * improvement css and add Table MatUi component * bug fix pagination, and performance improvement * Fix HORUSEC_MANAGER_URL and HORUSEC_AUTH_URL (#93) * Feature/save migration horusec (#90) * Upgrade migrations binaries to execute and find if exists migration name on horusec_migration tables * Fix path dockerfile * fix security * Fixing all lints (#99) * Fixing lint auth * Fixing lint core * Fixing security * Fxiing all lints of messages * Fixing security * Replace enums to usage from devkit (#102) * Updating platform with the new dotnet cli (#104) * [skip ci] Update versioning file * [WIP] Feature/manager overview routes (#101) * Rename Internal to overview and create base for the home screen * Rename Internal to overview and create base for the home screen * Fix security * Fixing cypress test Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * Feature/move modal content to screen (#106) * Rename Internal to overview and create base for the home screen * Rename Internal to overview and create base for the home screen * Fix security * Fixing cypress test * create route get one repository * remove modal content screen in repositories and workspace Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> Co-authored-by: wilian <wilian.silva@zup.com.br> * Manager - Home Screen (#108) * Add base for the home screen * Added home flow, and Home/Workspaces screen * Finished home screen * Adding nancy support in platform (#105) * Workspace selection remover without side menu (#107) * hook to retrieve workspace and repository via url * link to back home in logo * integration with develop * fix Dashboard route * Fix svg and titles logic * Bugfix/standardization manager navigation (#112) * Fixing routes * Tokens screens * remove workspace tokens * i18n and users screen Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> * fix (#111) * New navigation on manager - improvements. (#114) * Add name of context in overview internal * Fixing texts on token screen and minize overviw name * Improvee name on selected context in the side menu * Fixing repositoryID response when the token workspace (#115) * Fixing repositoryID response when the token workspace * Fixing lint * Feature/refactor routes to fetch tokens (#116) * add new routes and remove if's * refacture tokens add * Adding missing headers in files (#118) * Adding missing headers in files * Updating vulnerability hashes * Manager - Users Screen (#117) * Added new screen for the handle user on repository and workspace * Translate users screen * i8n token screens * fix * fix validation Scheme on users Co-authored-by: Lucas Garcia <lucas.garcia@zup.com.br> * Fixing pipeline errors * Permissions on new manager navigation (#120) * Fixing translate text on permission modal * Refactor permissions * Fixing ldap error message, and verify other messages (#122) Signed-off-by: lucas.bruno <lucas.bruno@zup.com.br> * Repositories count in workspace (#124) * Added count of repositories in workspaces list * Added count of repositories in workspaces list Signed-off-by: lucas.bruno <lucas.bruno@zup.com.br> * Fixing to return count something in Horusec auth type Signed-off-by: lucas.bruno <lucas.bruno@zup.com.br> * Fixing error when getting repository created by workspace token (#125) Signed-off-by: nathanmartinszup <nathan.martins@zup.com.br> * Updating devkit version and updating compose with the latest release * Updating go sum Signed-off-by: nathanmartinszup <nathan.martins@zup.com.br> * [skip ci] updating versioning file Signed-off-by: nathanmartinszup <nathan.martins@zup.com.br> Co-authored-by: Wilian Gabriel <63816070+wiliansilvazup@users.noreply.github.com> Co-authored-by: wilian <wilian.silva@zup.com.br> Co-authored-by: Lucas Bruno <69604366+lucasbrunozup@users.noreply.github.com> Co-authored-by: Lucas Garcia Santos <78167170+lucasgarciazup@users.noreply.github.com> Co-authored-by: nathannascimentozup <65020170+nathannascimentozup@users.noreply.github.com> Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> Co-authored-by: Tiago Angelo <tiago.angelo@zup.com.br> Co-authored-by: Nathan Tavares Nascimento <nathan.nascimento@zup.com.br> Co-authored-by: Lucas Garcia <lucas.garcia@zup.com.br> Co-authored-by: safe2008 <74587391+safe2008@users.noreply.github.com>
- Loading branch information
11 people
committed
Jul 15, 2021
1 parent
ced48e7
commit 5e948e3