-
Notifications
You must be signed in to change notification settings - Fork 518
/
vulnerability_metadata.go
74 lines (63 loc) · 2.48 KB
/
vulnerability_metadata.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
package model
import (
"encoding/json"
"fmt"
sqlite "github.com/anchore/grype/grype/db/internal/sqlite"
v5 "github.com/anchore/grype/grype/db/v5"
)
const (
VulnerabilityMetadataTableName = "vulnerability_metadata"
)
// VulnerabilityMetadataModel is a struct used to serialize db.VulnerabilityMetadata information into a sqlite3 DB.
type VulnerabilityMetadataModel struct {
ID string `gorm:"primary_key; column:id;"`
Namespace string `gorm:"primary_key; column:namespace;"`
DataSource string `gorm:"column:data_source"`
RecordSource string `gorm:"column:record_source"`
Severity string `gorm:"column:severity"`
URLs sqlite.NullString `gorm:"column:urls; default:null"`
Description string `gorm:"column:description"`
Cvss sqlite.NullString `gorm:"column:cvss; default:null"`
}
// NewVulnerabilityMetadataModel generates a new model from a db.VulnerabilityMetadata struct.
func NewVulnerabilityMetadataModel(metadata v5.VulnerabilityMetadata) VulnerabilityMetadataModel {
if metadata.Cvss == nil {
metadata.Cvss = make([]v5.Cvss, 0)
}
return VulnerabilityMetadataModel{
ID: metadata.ID,
Namespace: metadata.Namespace,
DataSource: metadata.DataSource,
RecordSource: metadata.RecordSource,
Severity: metadata.Severity,
URLs: sqlite.ToNullString(metadata.URLs),
Description: metadata.Description,
Cvss: sqlite.ToNullString(metadata.Cvss),
}
}
// TableName returns the table which all db.VulnerabilityMetadata model instances are stored into.
func (VulnerabilityMetadataModel) TableName() string {
return VulnerabilityMetadataTableName
}
// Inflate generates a db.VulnerabilityMetadataModel object from the serialized model instance.
func (m *VulnerabilityMetadataModel) Inflate() (v5.VulnerabilityMetadata, error) {
var links []string
var cvss []v5.Cvss
if err := json.Unmarshal(m.URLs.ToByteSlice(), &links); err != nil {
return v5.VulnerabilityMetadata{}, fmt.Errorf("unable to unmarshal URLs (%+v): %w", m.URLs, err)
}
err := json.Unmarshal(m.Cvss.ToByteSlice(), &cvss)
if err != nil {
return v5.VulnerabilityMetadata{}, fmt.Errorf("unable to unmarshal cvss data (%+v): %w", m.Cvss, err)
}
return v5.VulnerabilityMetadata{
ID: m.ID,
Namespace: m.Namespace,
DataSource: m.DataSource,
RecordSource: m.RecordSource,
Severity: m.Severity,
URLs: links,
Description: m.Description,
Cvss: cvss,
}, nil
}