kics

package
v1.7.0-integrations Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Apr 29, 2023 License: Apache-2.0 Imports: 20 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func PrepareScanDocument added in v1.4.4

func PrepareScanDocument(body map[string]interface{}, kind model.FileKind) map[string]interface{}

PrepareScanDocument removes _kics_lines from payload and parses json filters

Types

type Content added in v1.5.5

type Content struct {
	Content    *[]byte
	CountLines int
}

Content keeps the content of the file and the number of lines

type Service

type Service struct {
	SourceProvider   provider.SourceProvider
	Storage          Storage
	Parser           *parser.Parser
	Inspector        *engine.Inspector
	SecretsInspector *secrets.Inspector
	Tracker          Tracker
	Resolver         *resolver.Resolver
	// contains filtered or unexported fields
}

Service is a struct that contains a SourceProvider to receive sources, a storage to save and retrieve scanning informations a parser to parse and provide files in format that KICS understand, a inspector that runs the scanning and a tracker to update scanning numbers

func (*Service) GetScanSummary

func (s *Service) GetScanSummary(ctx context.Context, scanIDs []string) ([]model.SeveritySummary, error)

GetScanSummary returns how many vulnerabilities of each severity was found

func (*Service) GetVulnerabilities

func (s *Service) GetVulnerabilities(ctx context.Context, scanID string) ([]model.Vulnerability, error)

GetVulnerabilities returns a list of scan detected vulnerabilities

func (*Service) PrepareSources added in v1.4.3

func (s *Service) PrepareSources(ctx context.Context, scanID string, wg *sync.WaitGroup, errCh chan<- error)

PrepareSources will prepare the sources to be scanned

func (*Service) StartScan

func (s *Service) StartScan(
	ctx context.Context,
	scanID string,
	errCh chan<- error,
	wg *sync.WaitGroup,
	currentQuery chan<- int64)

StartScan executes scan over the context, using the scanID as reference

type Storage

type Storage interface {
	SaveFile(ctx context.Context, metadata *model.FileMetadata) error
	SaveVulnerabilities(ctx context.Context, vulnerabilities []model.Vulnerability) error
	GetVulnerabilities(ctx context.Context, scanID string) ([]model.Vulnerability, error)
	GetScanSummary(ctx context.Context, scanIDs []string) ([]model.SeveritySummary, error)
}

Storage is the interface that wraps following basic methods: SaveFile, SaveVulnerability, GetVulnerability and GetScanSummary SaveFile should append metadata to a file SaveVulnerabilities should append vulnerabilities list to current storage GetVulnerabilities should returns all vulnerabilities associated to a scan ID GetScanSummary should return a list of summaries based on their scan IDs

type Tracker

type Tracker interface {
	TrackFileFound()
	TrackFileParse()
	TrackFileFoundCountLines(countLines int)
	TrackFileParseCountLines(countLines int)
}

Tracker is the interface that wraps the basic methods: TrackFileFound and TrackFileParse TrackFileFound should increment the number of files to be scanned TrackFileParse should increment the number of files parsed successfully to be scanned

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL