/
vulnerabilityreport_types.go
123 lines (105 loc) · 4.54 KB
/
vulnerabilityreport_types.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
// Copyright 2023 Undistro Authors
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package v1alpha1
import (
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
)
// VulnerabilityReportSpec defines the desired state of VulnerabilityReport
type VulnerabilityReportSpec struct {
Cluster string `json:"cluster"`
Image string `json:"image"`
Digest string `json:"digest"`
Tags []string `json:"tags,omitempty"`
Architecture string `json:"architecture,omitempty"`
OS string `json:"os,omitempty"`
Distro *Distro `json:"distro,omitempty"`
TotalResources int `json:"totalResources"`
Resources map[string][]string `json:"resources"`
Vulnerabilities []Vulnerability `json:"vulnerabilities"`
Summary VulnerabilitySummary `json:"summary"`
}
type Vulnerability struct {
ID string `json:"id"`
Severity string `json:"severity"`
Title string `json:"title"`
Description string `json:"description,omitempty"`
Package string `json:"package"`
Version string `json:"version"`
FixVersion string `json:"fixVersion,omitempty"`
URL string `json:"url,omitempty"`
Status string `json:"status,omitempty"`
Type string `json:"type,omitempty"`
Score string `json:"score,omitempty"`
PublishedDate *metav1.Time `json:"publishedDate,omitempty"`
LastModifiedDate *metav1.Time `json:"lastModifiedDate,omitempty"`
}
type Distro struct {
Name string `json:"name,omitempty"`
Version string `json:"version,omitempty"`
}
type VulnerabilitySummary struct {
Total int `json:"total"`
Critical int `json:"critical"`
High int `json:"high"`
Medium int `json:"medium"`
Low int `json:"low"`
Unknown int `json:"unknown"`
}
// VulnerabilityReportStatus defines the observed state of VulnerabilityReport
type VulnerabilityReportStatus struct {
Status `json:",inline"`
}
func (in *VulnerabilityReport) SetSaaSStatus(status metav1.ConditionStatus, reason, msg string) {
in.Status.SetCondition(metav1.Condition{
Type: "SaaS",
Status: status,
ObservedGeneration: in.Generation,
Reason: reason,
Message: msg,
})
}
func (in *VulnerabilityReport) SaaSStatusIsTrue() bool {
return in.Status.ConditionIsTrue("SaaS")
}
//+kubebuilder:object:root=true
//+kubebuilder:subresource:status
//+kubebuilder:resource:shortName={vuln,vulns,vulnerabilities}
//+kubebuilder:printcolumn:name="Cluster",type="string",JSONPath=".spec.cluster",priority=0
//+kubebuilder:printcolumn:name="Image",type="string",JSONPath=".spec.image",priority=0
//+kubebuilder:printcolumn:name="Total",type="string",JSONPath=".spec.summary.total",priority=0
//+kubebuilder:printcolumn:name="Critical",type="string",JSONPath=".spec.summary.critical",priority=0
//+kubebuilder:printcolumn:name="High",type="string",JSONPath=".spec.summary.high",priority=0
//+kubebuilder:printcolumn:name="Medium",type="string",JSONPath=".spec.summary.medium",priority=1
//+kubebuilder:printcolumn:name="Low",type="string",JSONPath=".spec.summary.low",priority=1
//+kubebuilder:printcolumn:name="Unknown",type="string",JSONPath=".spec.summary.unknown",priority=1
//+kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp",priority=0
// VulnerabilityReport is the Schema for the vulnerabilityreports API
// +genclient
// +genclient:noStatus
type VulnerabilityReport struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec VulnerabilityReportSpec `json:"spec,omitempty"`
Status VulnerabilityReportStatus `json:"status,omitempty"`
}
//+kubebuilder:object:root=true
// VulnerabilityReportList contains a list of VulnerabilityReport
type VulnerabilityReportList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []VulnerabilityReport `json:"items"`
}
func init() {
SchemeBuilder.Register(&VulnerabilityReport{}, &VulnerabilityReportList{})
}