issue

package

v0.1.5-alpha Latest Latest Go to latest Published: Oct 25, 2022 License: Apache-2.0 Imports: 6 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/crashappsec/github-analyzer

Documentation ¶

Index ¶

Constants
Variables
type Issue
type IssueID

Constants ¶

View Source

const (
	AUTH_2FA_ORG_DISABLED              IssueID = "AUTH_2FA_ORG_DISABLED"
	AUTH_2FA_USER_DISABLED                     = "AUTH_2FA_USER_DISABLED"
	AUTH_2FA_COLLABORATOR_DISABLED             = "AUTH_2FA_COLLABORATOR_DISABLED"
	INF_DISC_HTTP_WEBHOOK                      = "INF_DISC_HTTP_WEBHOOK"
	INF_DISC_SECRET_SCANNING_DISABLED          = "INF_DISC_SECRET_SCANNING_DISABLED"
	TOOLING_ADVANCED_SECURITY_DISABLED         = "TOOLING_ADVANCED_SECURITY_DISABLED"
	LEAST_PRIV_OAUTH_PERMS_DISABLED            = "LEAST_PRIV_OAUTH_PERMS_DISABLED"
	STATS_OAUTH_PERMS                          = "STATS_OAUTH_PERMS"
	STATS_USER_PERM                            = "STATS_USER_PERM"
)

Variables ¶

View Source

var AvailableChecks = map[IssueID]string{
	AUTH_2FA_ORG_DISABLED:              "Organization 2FA settings",
	AUTH_2FA_USER_DISABLED:             "User 2FA settings",
	AUTH_2FA_COLLABORATOR_DISABLED:     "Collaborator 2FA settings",
	INF_DISC_HTTP_WEBHOOK:              "Webhook payload URL settings",
	INF_DISC_SECRET_SCANNING_DISABLED:  "Secret scanning settings for new repositories",
	TOOLING_ADVANCED_SECURITY_DISABLED: "Advanced security settings for new repositories",
	LEAST_PRIV_OAUTH_PERMS_DISABLED:    "Application restriction settings",
	STATS_USER_PERM:                    "Permissions overview for users",
	STATS_OAUTH_PERMS:                  "OAuth application summary",
}

Functions ¶

This section is empty.

Types ¶

type Issue ¶

type Issue struct {
	ID          IssueID             `json:"id"`
	Name        string              `json:"name"`
	Severity    severity.Severity   `json:"severity"`
	Category    category.Category   `json:"category"`
	Tags        []tags.Tag          `json:"tags,omitempty"`
	Description string              `json:"description"`
	Resources   []resource.Resource `json:"resource"`
	CWEs        []int               `json:"cwes,omitempty"`
	Remediation string              `json:"remediation"`
}

func ApplicationRestrictionsDisabled ¶

func ApplicationRestrictionsDisabled(org string) Issue

func CollaboratorsWithout2FA ¶

func CollaboratorsWithout2FA(
	usersLacking2FA []string,
	resources []resource.Resource,
) Issue

func InsecureWebhookPayloadURL ¶

func InsecureWebhookPayloadURL(url string) Issue

func OAuthStats ¶

func OAuthStats(org string, appinfo []string) Issue

func Org2FADisabled ¶

func Org2FADisabled(org string) Issue

func OrgAdvancedSecurityDisabled ¶

func OrgAdvancedSecurityDisabled(org string) Issue

func OrgSecretScanningDisabledForNewRepos ¶

func OrgSecretScanningDisabledForNewRepos(org string) Issue

func UserPermissionStats ¶

func UserPermissionStats(user string, permissions []string) Issue

func UsersWithout2FA ¶

func UsersWithout2FA(
	usersLacking2FA []string,
	resources []resource.Resource,
) Issue

type IssueID ¶

type IssueID string

Source Files ¶

View all Source files

issue.go

Directories ¶

Path	Synopsis
category
resource
severity
tags

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL