Scoring Added For Aug V2 (#8)

* required files created * func added to transition into new jira schema * jira translation done * not needed file removed * schema and folder added * files altered * scoring function * scoring func updated in sync with ssd opa * log messages added * fix: logs & continue/return stats --------- Co-authored-by: genos1998 <[email protected]>
OpsMx · Sep 17, 2024 · a57fb6c · a57fb6c
1 parent 3de7327
commit a57fb6c
Show file tree

Hide file tree

Showing 15 changed files with 7,437 additions and 19 deletions.
diff --git a/august2024august2024v2/genqlient.yaml b/august2024august2024v2/genqlient.yaml
@@ -0,0 +1,17 @@
+schema: schema.graphql
+operations:
+- queries.graphql
+generated: schema-generated.go
+package: august2024august2024v2
+use_struct_references: true
+bindings:
+  Boolean:
+    type: "*bool"
+  DateTime:
+    type: "*time.Time"
+  Int64:
+    type: int64
+  Int: 
+    type: "*int"
+  ID:
+    type: "*string"
diff --git a/august2024august2024v2/modules.go b/august2024august2024v2/modules.go
@@ -0,0 +1,60 @@
+package august2024august2024v2
+
+import "time"
+
+const (
+	RunHistoryStatusException = "exception"
+
+	Pass     string = "pass"
+	Fail     string = "fail"
+	Low      string = "low"
+	Medium   string = "medium"
+	High     string = "high"
+	Critical string = "critical"
+
+	SOURCE    string = "source"
+	BUILD     string = "build"
+	ARTIFACT  string = "artifact"
+	DEPLOY    string = "deploy"
+	ImageRisk string = "imageRisk"
+
+	HighStatusValue int = 50
+	LowStatusValue  int = 70
+)
+
+type Scoring struct {
+	OrganizationName             string
+	TeamName                     string
+	Namespace                    string
+	ClusterId                    string
+	ApplicationName              string
+	ServiceName                  string
+	DeployedAt                   time.Time
+	Policy                       map[string][]PolicyDetail
+	Image                        string
+	ImageTag                     string
+	ImageSha                     string
+	ApplicationDeploymentId      string
+	BlockedDeployment            bool
+	FailDeploymentFirewallResult bool
+	DeploymentFirewall           bool
+}
+
+type PolicyDetail struct {
+	PolicyName string
+	Stage      string
+	Status     string
+	Severity   string
+}
+
+type PolicyStatusCount struct {
+	PassCount         int
+	LowPassCount      int
+	MediumPassCount   int
+	HighPassCount     int
+	CriticalPassCount int
+	LowCount          int
+	MediumCount       int
+	HighCount         int
+	CriticalCount     int
+}
diff --git a/august2024august2024v2/queries.graphql b/august2024august2024v2/queries.graphql
@@ -0,0 +1,103 @@
+query GetArtifactScanDataId {
+    queryArtifactScanData @cascade{
+        id
+        artifactRisk {
+            id
+        }
+    }
+}
+
+query QueryArtifactScanDataRunHistory ($scanDataId: String!) {
+	queryArtifactScanData(filter: {id:{eq:$scanDataId}}) @cascade(fields: ["artifactRunHistory"]) {
+		artifactRunHistory @cascade(fields: ["id"]) {
+			id
+			policyId
+			PolicyName
+			Stage
+			Artifact
+			ArtifactTag
+			ArtifactSha
+			CreatedAt
+			UpdatedAt
+			DeployedAt
+			Hash
+			Pass
+			MetaData
+			scheduledPolicy
+			DatasourceTool
+			Status
+			securityIssue {
+				AlertTitle
+				AlertMessage
+				Suggestions
+				Severity
+				Action
+				Error
+			}
+			policyEnforcements {
+				id
+				status
+				severity
+				action
+				conditionValue
+				policy {
+					id
+					policyName
+					category
+					stage
+					scheduledPolicy
+					script
+					variables
+					conditionName
+					suggestion
+				}
+			}
+		}
+	}
+}
+
+query GetArtifactRisk($id: ID!) {
+    getArtifactRisk(id: $id) {
+        sourceCodeAlertsScore
+        buildAlertsScore
+        artifactAlertsScore
+        deploymentAlertsScore
+        artifactRiskStatus
+    }
+}
+
+mutation UpdateArtifactScanDataRiskScoreAndStatus(
+    $id: ID!
+    $riskStatus: RiskStatus!
+    $buildAlertsScore: Int
+    $sourceCodeAlertsScore: Int
+    $artifactAlertsScore: Int
+    $deploymentAlertsScore: Int
+) {
+    updateArtifactRisk(
+        input: {
+            set: {
+                artifactRiskStatus: $riskStatus
+                sourceCodeAlertsScore: $sourceCodeAlertsScore
+                buildAlertsScore: $buildAlertsScore
+                artifactAlertsScore: $artifactAlertsScore
+                deploymentAlertsScore: $deploymentAlertsScore
+            }
+            filter: { id: [$id] }
+        }
+    ) {
+        numUids
+    }
+}
+
+
+mutation UpdateArtifactScanDataRisk {
+    updateArtifactScanData(
+        input: {
+            set: { artifactRisk: { artifactRiskStatus: scanning } }
+            filter: { has: id }
+        }
+    ) {
+        numUids
+    }
+}