-
Notifications
You must be signed in to change notification settings - Fork 2.4k
/
Copy pathazurearm.go
38 lines (31 loc) · 1.05 KB
/
azurearm.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
package azurearm
import (
"os"
"path/filepath"
"github.com/aquasecurity/trivy/pkg/fanal/analyzer"
"github.com/aquasecurity/trivy/pkg/fanal/analyzer/config"
"github.com/aquasecurity/trivy/pkg/misconf"
)
const (
version = 1
analyzerType = analyzer.TypeAzureARM
)
func init() {
analyzer.RegisterPostAnalyzer(analyzerType, newAzureARMConfigAnalyzer)
}
// azureARMConfigAnalyzer is an analyzer for detecting misconfigurations in Azure ARM templates.
// It embeds config.Analyzer so it can implement analyzer.PostAnalyzer.
type azureARMConfigAnalyzer struct {
*config.Analyzer
}
func newAzureARMConfigAnalyzer(opts analyzer.AnalyzerOptions) (analyzer.PostAnalyzer, error) {
a, err := config.NewAnalyzer(analyzerType, version, misconf.NewAzureARMScanner, opts)
if err != nil {
return nil, err
}
return &azureARMConfigAnalyzer{Analyzer: a}, nil
}
// Required overrides config.Analyzer.Required() and check if the given file is JSON.
func (a *azureARMConfigAnalyzer) Required(filePath string, _ os.FileInfo) bool {
return filepath.Ext(filePath) == ".json"
}