forked from sonatype-nexus-community/gonexus
/
cli.go
99 lines (84 loc) · 3.22 KB
/
cli.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
package nexusiq
import (
"encoding/json"
"io/ioutil"
)
// IqCliResults encapsulates the JSON object generated by an evaluation with the Nexus IQ CLI
type IqCliResults struct {
ApplicationID string `json:"applicationId"`
ScanID string `json:"scanId"`
ReportHTMLURL string `json:"reportHtmlUrl"`
ReportPDFURL string `json:"reportPdfUrl"`
ReportDataURL string `json:"reportDataUrl"`
PolicyAction string `json:"policyAction"`
PolicyEvaluationResult policyEvaluationResult `json:"policyEvaluationResult"`
}
type policyEvaluationResult struct {
Alerts []alert `json:"alerts"`
AffectedComponentCount int64 `json:"affectedComponentCount"`
CriticalComponentCount int64 `json:"criticalComponentCount"`
SevereComponentCount int64 `json:"severeComponentCount"`
ModerateComponentCount int64 `json:"moderateComponentCount"`
CriticalPolicyViolationCount int64 `json:"criticalPolicyViolationCount"`
SeverePolicyViolationCount int64 `json:"severePolicyViolationCount"`
ModeratePolicyViolationCount int64 `json:"moderatePolicyViolationCount"`
GrandfatheredPolicyViolationCount int64 `json:"grandfatheredPolicyViolationCount"`
}
type alert struct {
Trigger trigger `json:"trigger"`
Actions []action `json:"actions"`
}
type action struct {
ActionTypeID string `json:"actionTypeId"`
Target interface{} `json:"target"`
}
type trigger struct {
PolicyID string `json:"policyId"`
PolicyName string `json:"policyName"`
ThreatLevel int64 `json:"threatLevel"`
PolicyViolationID string `json:"policyViolationId"`
ComponentFacts []componentFact `json:"componentFacts"`
}
type componentFact struct {
Component
ConstraintFacts []constraintFact `json:"constraintFacts"`
DisplayName displayName `json:"displayName"`
}
// TODO: merge with the same ones in webhooks?
type constraintFact struct {
ConstraintID string `json:"constraintId"`
ConstraintName string `json:"constraintName"`
OperatorName string `json:"operatorName"`
ConditionFacts []conditionFact `json:"conditionFacts"`
}
type conditionFact struct {
ConditionTypeID string `json:"conditionTypeId"`
ConditionIndex int64 `json:"conditionIndex"`
Summary string `json:"summary"`
Reason string `json:"reason"`
Reference *reference `json:"reference"`
TriggerJSON interface{} `json:"triggerJson"`
}
type reference struct {
Value string `json:"value"`
Type string `json:"type"`
}
type displayName struct {
Parts []part `json:"parts"`
}
type part struct {
Field string `json:"field,omitempty"`
Value string `json:"value"`
}
// ReadIqCliResultFile marshals into a struct the results file from a Nexus IQ CLI evaluation
func ReadIqCliResultFile(filename string) (IqCliResults, error) {
f, err := ioutil.ReadFile(filename)
if err != nil {
return IqCliResults{}, err
}
var cli IqCliResults
if err = json.Unmarshal(f, &cli); err != nil {
return IqCliResults{}, err
}
return cli, nil
}