Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Filter out non-applicable violations if requested by policy #257

Closed
wants to merge 102 commits into from
Closed

Filter out non-applicable violations if requested by policy #257

wants to merge 102 commits into from

Conversation

eranturgeman
Copy link
Contributor

  • The pull request is targeting the dev branch.
  • The code has been validated to compile successfully by running go vet ./....
  • The code has been formatted properly using go fmt ./....
  • All static analysis checks passed.
  • All tests have passed. If this feature is not already covered by the tests, new tests have been added.
  • Updated the Contributing page / ReadMe page / CI Workflow files if needed.
  • All changes are detailed at the description. if not already covered at JFrog Documentation, new documentation have been added.

This Pr introduces an additional filtering to found violations:
If a violation is non-applicable AND the policy that initiated the violation is set to "skip non applicable" - the violation will not appear in the final results (audit, scan, frogbot)

This PR includes changes from this PR #241 that needs to be merged prior to this one
This PR depends on: jfrog/jfrog-client-go#1052

@eranturgeman
comments
650cc2b
@eranturgeman
Added new field for violation results to ApplicabilityScanManager + a…
8c2e4bd 
…dded the new parsed violations results to ApplicabilityScanManager.
@eranturgeman
Added new field for violation results to IacScanManager + added the n…
7a4f5a1 
…ew parsed violations results to IacScanManager.
@eranturgeman
Added new field for violation results to SastScanManager + added the …
c664895 
…new parsed violations results to SastScanManager.
@eranturgeman
Added new field for violation results to SecretScanManager + added th…
dcd923e 
…e new parsed violations results to SecretScanManager.
@eranturgeman
added parsing and processing for violations results (similar to vulne…
03d0904 
…rabilities)
@eranturgeman
updated all Run***Scan functions to return the violation results + ad…
a16d7f2 
…ded relevant logs
@eranturgeman
simplified interface calls
8d3cd77
@eranturgeman
deleted un-used field from sastScanManager and fixed all tests refere…
2c0b972 
…nces
@eranturgeman
deleted un-used field from applicabilityScanManager and fixed all tes…
748a9b0 
…ts references
@eranturgeman
deleted un-used field from iacScanManager and fixed all tests references
20eba2b
@eranturgeman
deleted un-used field from SecretScanManager and fixed all tests refe…
1c43d27 
…rences
@eranturgeman
fixed broken tests dur to changes
cc4720c
@eranturgeman
remove comment
6065dd2
@eranturgeman
simplified interface and added temp func for testing
bb89eec
@eranturgeman
adjusted all functions to new interface changes and logic changes
49617de
@eranturgeman
added new struct to replace the old JasScansResults and re-wrote all …
256064d 
…methods for hte new struct
@eranturgeman
removed comment
5a7bf61
@eranturgeman
Merge branch 'dev' of https://github.com/jfrog/jfrog-cli-security int…
88074b8 
…o jas-violations-support
@eranturgeman
updated applicability scanner to ignore violations logic since this s…
42b2fde 
…canner cannot incur violations
@eranturgeman
comments
0698069
@eranturgeman
starting to replace all old JasScansResults references (struct is onl…
10e85c0 
…y commented at this point)
@eranturgeman
replaced old functions usages and commented all old functions (need t…
586aaa3 
…o delete comments in results.go)
@eranturgeman
fixing breaks after structs changes and started initial changes in pa…
1a9f913 
…rseCommandResults related to jas violations
@eranturgeman
added a new parsing func for jas vuln & violations (parseRequiredJasR…
3173b9e 
…esults) + changed the names for Sca parsing methods
@eranturgeman
changed name in Sast to SastVulnerabilities in SimpleJsonResults and …
638c075 
…all relevant references
@eranturgeman
fixed reference in broken test
12ae850
@eranturgeman
changed name in Iacs to IacsVulnerabilities in SimpleJsonResults and …
1283811 
…all relevant references
@eranturgeman
comment
c71e6a1
@eranturgeman
comment
6778de2
@eranturgeman eranturgeman mentioned this pull request Dec 4, 2024
Open
7 tasks
@eranturgeman eranturgeman changed the title Filter out non-applicable violations if requested bu policy Filter out non-applicable violations if requested bט policy Jan 2, 2025
@eranturgeman eranturgeman changed the title Filter out non-applicable violations if requested bט policy Filter out non-applicable violations if requested by policy Jan 2, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@eranturgeman @attiasas