Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pr orly ast support #356

Merged
merged 30 commits into from
Jul 23, 2020
Merged

Pr orly ast support #356

merged 30 commits into from
Jul 23, 2020

Conversation

olgakil
Copy link
Contributor

@olgakil olgakil commented Jul 23, 2020

Refactoring to allow AST support

Existing tests on SCA should cover all the changes

@olgakil
AST support
a670d2b
@olgakil
Fix error integration with new common
50b4551
@olgakil
Support AST
a7b5cde
@olgakil
Support AST - merge last commits
9eeb9ab
@olgakil
Fix issue with scanner.isEnabled
8366a25
@olgakil
change version of SDK to 0.4.31
05f2570
@olgakil
change version of SDK to 0.4.31
7cbfa12
@olgakil
SDK version 32 - fixes related to incorrect includes + fix CxGo
8bddd95
@olgakil
AST support
9b5da7d
@olgakil
Fix error integration with new common
c440184
@olgakil
Support AST
d3603db
@olgakil
Support AST - merge last commits
2baaab6
@olgakil
Fix issue with scanner.isEnabled
71b2541
@olgakil
SDK version 32 - fixes related to incorrect includes + fix CxGo
a5b60ff
@olgakil
AST support
f38fa21
@olgakil
Fix error integration with new common
0f9c4b5
@olgakil
Support AST
82d23f6
@olgakil
Support AST - merge last commits
5c29398
@olgakil
Fix issue with scanner.isEnabled
0bb5683
@olgakil
change version of SDK to 0.4.31
a8aa339
@olgakil
SDK version 32 - fixes related to incorrect includes + fix CxGo
a514f55
@olgakil
AST support
76ead43
@olgakil
Fix error integration with new common
ebc2186
@olgakil
Support AST
5d6ecae
@olgakil
Support AST - merge last commits
59495d8
@olgakil
Fix issue with scanner.isEnabled
0c2be79
@olgakil
change version of SDK to 0.4.31
e039ca4
@olgakil
change version of SDK to 0.4.31
745e1b1
@olgakil
SDK version 32 - fixes related to incorrect includes + fix CxGo
07fd7aa
@olgakil
Add AST scan to batch flow
e176e48
@cxflowtestuser
Copy link
Collaborator

Scan submitted to Checkmarx

@cxflowtestuser
Copy link
Collaborator

Checkmarx scan completed

Full Scan Details

Checkmarx Scan Summary

Severity Count
High 0
Medium 112
Low 1407
Informational 38

Violation Summary

Severity Count

Details

Lines Severity Category File Link

@olgakil olgakil requested a review from AvivCx July 23, 2020 06:58
@olgakil olgakil merged commit c669f2c into develop Jul 23, 2020
alex-ko-dev
alex-ko-dev reviewed Jul 23, 2020
View reviewed changes
src/main/java/com/checkmarx/flow/CxFlowRunner.java
ScanResults scaScanResults = null;
ScanResults astScanResults = null;

if(isSastEnabled()) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we use a 'for' loop here or reuse the existing one?

src/main/java/com/checkmarx/flow/CxFlowRunner.java
@@ -451,8 +453,7 @@ private String getOptionValues(ApplicationArguments arg, String option){
}

private void cxScan(ScanRequest request, String gitUrl, String gitAuthUrl, String branch, ScanRequest.Repository repoType) throws ExitThrowable {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we use a more meaningful name instead of cxScan()? It's not clear by looking at the code what is the difference between cxScan() and scan().

src/main/java/com/checkmarx/flow/CxFlowRunner.java
}

private boolean isAstEnabled() {
return flowProperties.getEnabledVulnerabilityScanners().contains(AST_SCANNER);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are there cases when getEnabledVulnerabilityScanners() returns null?

src/main/java/com/checkmarx/flow/service/AbstractASTScanner.java
Files.deleteIfExists(Paths.get(cxZipFile));

} catch (Exception e) {
final String message = "SCA scan failed.";
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks like 'scanType' should be used here instead of SCA.

src/main/java/com/checkmarx/flow/service/AbstractASTScanner.java
Comment on lines +56 to +60
final String message = "SCA scan failed.";
log.error(message, e);
OperationResult scanCreationFailure = new OperationResult(OperationStatus.FAILURE, e.getMessage());
logRequest(scanRequest, getScanId(internalResults), scanCreationFailure);
throw new MachinaRuntimeException(message);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please resolve this code duplication.

@olgakil olgakil deleted the pr-orly-ast-support branch July 30, 2020 11:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@alex-ko-dev alex-ko-dev alex-ko-dev left review comments

@AvivCx AvivCx AvivCx approved these changes

@NimrodGolan NimrodGolan Awaiting requested review from NimrodGolan

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@olgakil @cxflowtestuser @alex-ko-dev @AvivCx