mantiumai · alex-nork · Sep 6, 2023 · Sep 5, 2023 · Sep 5, 2023 · Sep 5, 2023
diff --git a/chirps/scan/models.py b/chirps/scan/models.py
@@ -3,8 +3,10 @@
 from asset.models import BaseAsset
 from django.contrib.auth.models import User
 from django.db import models
+from django.db.models import QuerySet
 from django.utils import timezone
 from django_celery_results.models import TaskResult
+from policy.models import MultiQueryResult, RegexResult
 
 
 class ScanTemplate(models.Model):
@@ -134,6 +136,13 @@ class ScanAsset(models.Model):
     celery_task_id = models.CharField(max_length=256, null=True)
     progress = models.IntegerField(default=0)
 
+    @property
+    def results(self) -> QuerySet:
+        """Fetch the combined results for this asset."""
+        return QuerySet.union(
+            RegexResult.objects.filter(scan_asset=self), MultiQueryResult.objects.filter(scan_asset=self)
+        )
+
     def __str__(self) -> str:
         """Stringify the asset name"""
         return self.asset.name

diff --git a/chirps/scan/templates/scan/_rule_table_rows.html b/chirps/scan/templates/scan/_rule_table_rows.html
@@ -0,0 +1,45 @@
+{% load scan_filters %}
+{% for rule in unique_rules %}
+<tr>
+    <td>
+        <span style="color:{{ rule.severity.color }};">
+            {{ rule.severity.name }} ({{ rule.severity.value }})
+        </span>
+    </td>
+    <td>{{rule.policy.policy.name}} : {{rule.name}}</td>
+    <td>{{rule.finding_count}}</td>
+    <td>
+        <button class="btn btn-link" type="button" data-bs-toggle="collapse"
+            data-bs-target="#collapse{{rule_type}}{{rule.id}}" aria-expanded="false"
+            aria-controls="collapse{{rule_type}}{{rule.id}}"> <i class="fa-solid fa-magnifying-glass"></i>
+        </button>
+    </td>
+</tr>
+<tr>
+    <td colspan="7">
+        <div class="collapse" id="collapse{{rule_type}}{{rule.id}}">
+            <div class="card card-body">
+                <table class="table">
+                    <thead>
+                        <tr>
+                            <th scope="col">Finding</th>
+                            <th scope="col">Source ID</th>
+                            <th scope="col">Asset</th>
+                        </tr>
+                    </thead>
+                    <tbody>
+                        {% for finding in rule.findings %}
+                        <tr>
+                            <td>{{finding|surrounding_text_with_preview_size:finding_preview_size}}
+                            </td>
+                            <td>{{ finding.source_id }}</td>
+                            <td>{{ finding.result.scan_asset.asset.name }}</td>
+                        </tr>
+                        {% endfor %}
+                    </tbody>
+                </table>
+            </div>
+        </div>
+    </td>
+</tr>
+{% endfor %}
diff --git a/chirps/scan/templates/scan/scan_run.html b/chirps/scan/templates/scan/scan_run.html
@@ -72,7 +72,6 @@ <h5 class="my-auto ml-0 text-right">
             </div>
 
             <div class="tab-pane fade" id="tabs-3" role="tabpanel" aria-labelledby="tab-3">
-
                 <table class="table">
                     <thead>
                         <tr>
@@ -83,52 +82,10 @@ <h5 class="my-auto ml-0 text-right">
                         </tr>
                     </thead>
                     <tbody>
-                        {% for rule in unique_rules %}
-                        <tr>
-                            <td>
-                                <span style="color:{{ rule.severity.color }};">
-                                    {{ rule.severity.name }} ({{ rule.severity.value }})
-                                </span>
-                            </td>
-                            <td>{{rule.policy.policy.name}} : {{rule.name}}</td>
-                            <td>{{rule.finding_count}}</td>
-                            <td>
-                                <button class="btn btn-link" type="button" data-bs-toggle="collapse"
-                                    data-bs-target="#collapse{{rule.id}}" aria-expanded="false"
-                                    aria-controls="collapse{{rule.id}}"> <i class="fa-solid fa-magnifying-glass"></i>
-                                </button>
-                            </td>
-                        </tr>
-                        <tr>
-                            <td colspan="7">
-                                <div class="collapse" id="collapse{{rule.id}}">
-                                    <div class="card card-body">
-                                        <table class="table">
-                                            <thead>
-                                                <tr>
-                                                    <th scope="col">Finding</th>
-                                                    <th scope="col">Source ID</th>
-                                                    <th scope="col">Asset</th>
-                                                </tr>
-                                            </thead>
-                                            <tbody>
-                                                {% for finding in rule.findings %}
-                                                <tr>
-                                                    <td>{{finding|surrounding_text_with_preview_size:finding_preview_size}}</td>
-                                                    <td>{{ finding.source_id }}</td>
-                                                    <td>{{ finding.result.scan_asset.asset.name }}</td>
-                                                </tr>
-                                                {% endfor %}
-                                            </tbody>
-                                        </table>
-                                    </div>
-                                </div>
-                            </td>
-                        </tr>
-                        {% endfor %}
+                        {% include 'scan/_rule_table_rows.html' with unique_rules=unique_regex_rules %}
+                        {% include 'scan/_rule_table_rows.html' with unique_rules=unique_multiquery_rules %}
                     </tbody>
                 </table>
-
             </div>
         </div>
     </div>

diff --git a/chirps/scan/views.py b/chirps/scan/views.py
@@ -12,7 +12,7 @@
 from django.template import loader
 from django.utils import timezone
 from embedding.models import Embedding
-from policy.models import Policy
+from policy.models import MultiQueryRule, Policy, RegexRule
 
 from chirps.celery import app as celery_app
 
@@ -45,6 +45,32 @@ def view_scan_history(request, scan_id):
     )
 
 
+def get_unique_rules_and_findings(results):
+    """Return a dictionary of unique rules for each rule class from a list of results."""
+    rule_dict = {}
+    finding_count = 0
+    finding_severities = defaultdict(int)
+    unique_rules = defaultdict(set)
+
+    for result in results:
+        rule = result.rule
+
+        if rule.id not in rule_dict:
+            rule.finding_count = 0
+            rule.findings = []
+            rule_dict[rule.id] = rule
+
+        findings = list(result.findings.all())
+        count = len(findings)
+        rule.finding_count += count
+        rule.findings.extend(findings)
+        finding_count += count
+        finding_severities[rule.severity] += count
+        unique_rules[type(rule)].add(rule)
+
+    return unique_rules, finding_count, finding_severities
+
+
 @login_required
 def view_scan_run(request, scan_run_id):
     """View details for a particular scan."""
@@ -54,40 +80,20 @@ def view_scan_run(request, scan_run_id):
     results = []
     scan_assets = ScanAsset.objects.filter(scan=scan_run)
 
-    # Step 1: build a list of all the results (rules) with findings.
+    # Build a list of all the results (rules) with findings.
     for scan_asset in scan_assets:
         # Iterate through the rule set
-        for result in scan_asset.results.all():
+        for result in scan_asset.results:
 
             if result.has_findings():
                 results.append(result)
 
-    # Step 2: aggregate results by rules with matching rule IDs
-    unique_rules = {result.rule for result in results}
-
-    # Next, walk through all of the results, aggregating the findings count for each unique rule ID
-    finding_count = 0
-    finding_severities = defaultdict(int)
-
-    # Walk through each unique rule
-    for rule in unique_rules:
-        rule.finding_count = 0
-        rule.findings = []
-
-        # Iterate through each result that was hit for the rule
-        for result in results:
-
-            # Increment the number of findings for this rule
-            if result.rule.id == rule.id:
-                findings = list(result.findings.all())
-                count = len(findings)
-                rule.finding_count += count
-                finding_count += count
-                rule.findings.extend(findings)
-
-                # While we're in this loop, store off the number of times each severity is encountered
-                # This will be used to render the pie-chart in the UI
-                finding_severities[rule.severity] += count
+    # Aggregate results by rules with matching rule IDs
+    unique_rules, finding_count, finding_severities = get_unique_rules_and_findings(results)
+    unique_regex_rules = unique_rules.get(RegexRule, [])
+    unique_multiquery_rules = unique_rules.get(MultiQueryRule, [])
+    severity_counts = list(finding_severities.values())
+    severities = [str(severity).replace("'", '"') for severity in finding_severities.keys()]
 
     # Retrieve finding_preview_size from the user's profile
     finding_preview_size = request.user.profile.finding_preview_size
@@ -98,11 +104,10 @@ def view_scan_run(request, scan_run_id):
         {
             'scan_run': scan_run,  # The scan run object
             'finding_count': finding_count,  # Total number of findings
-            'unique_rules': unique_rules,  # List of unique rules hit by findings
-            'severities': [
-                str(severity).replace("'", '"') for severity in finding_severities.keys()
-            ],  # List of all the severities encountered
-            'severity_counts': list(finding_severities.values()),  # List of all the severity counts encountered
+            'unique_regex_rules': unique_regex_rules,  # List of unique regex rules hit by findings
+            'unique_multiquery_rules': unique_multiquery_rules,  # List of unique multiquery rules hit by findings
+            'severities': severities,  # List of all the severities encountered
+            'severity_counts': severity_counts,  # List of all the severity counts encountered
             'finding_preview_size': finding_preview_size,
         },
     )