use of com.checkmarx.sdk.config.CxProperties in project checkmarx-spring-boot-java-sdk by checkmarx-ltd.
the class FilterValidatorTest method verifyScriptResult.
private static void verifyScriptResult(Script script, String severity, String status, String state, String name, String cweId, boolean expectedResult) {
ResultType finding = createFinding(status, state);
QueryType findingGroup = createFindingGroup(severity, name, cweId);
EngineFilterConfiguration filterConfiguration = createFilterConfiguration(script);
FilterValidator validator = new FilterValidator();
FilterInputFactory filterInputFactory = new FilterInputFactory(new CxProperties());
FilterInput filterInput = filterInputFactory.createFilterInputForCxSast(findingGroup, finding);
boolean actualResult = validator.passesFilter(filterInput, filterConfiguration);
assertEquals(expectedResult, actualResult, "Unexpected script filtering result.");
}
use of com.checkmarx.sdk.config.CxProperties in project checkmarx-spring-boot-java-sdk by checkmarx-ltd.
the class FilterValidatorTest method validateExpectedError.
private void validateExpectedError(String scriptWithUnknownObject) {
Script script = parse(scriptWithUnknownObject);
QueryType findingGroup = createFindingGroup(SEVERITY_LOW, NAME1, CWE1);
ResultType finding = createFinding(STATUS_NEW, STATE_URGENT_ID);
EngineFilterConfiguration filterConfiguration = createFilterConfiguration(script);
FilterValidator validator = new FilterValidator();
try {
FilterInputFactory filterInputFactory = new FilterInputFactory(new CxProperties());
FilterInput filterInput = filterInputFactory.createFilterInputForCxSast(findingGroup, finding);
validator.passesFilter(filterInput, filterConfiguration);
} catch (Exception e) {
assertTrue(e instanceof CheckmarxRuntimeException, String.format("Expected %s to be thrown.", CheckmarxRuntimeException.class));
assertTrue(e.getCause() instanceof GroovyRuntimeException, String.format("Expected exception cause to be %s", GroovyRuntimeException.class));
}
}
use of com.checkmarx.sdk.config.CxProperties in project cx-flow by checkmarx-ltd.
the class AstRemoteRepoScanSteps method startScan.
public void startScan(List<VulnerabilityScanner> scanners, String branch, String repo, boolean isPublicRepo, String projectName) {
CxProperties cxProperties = new CxProperties();
ExternalScriptService scriptService = new ExternalScriptService();
CxScannerService cxScannerService = new CxScannerService(cxProperties, null, null, null, null);
HelperService helperService = new HelperService(flowProperties, cxScannerService, jiraProperties, scriptService);
ProjectNameGenerator projectNameGenerator = new ProjectNameGenerator(helperService, cxScannerService, flowProperties);
FlowService flowService = new FlowService(new ArrayList<>(), projectNameGenerator, resultsServiceMock);
ScanRequest scanRequest = getBasicScanRequest(branch, repo, isPublicRepo, projectName);
scanRequest = configOverrider.overrideScanRequestProperties(new CxConfig(), scanRequest);
scanRequest.setVulnerabilityScanners(scanners);
BugTracker bt = BugTracker.builder().type(BugTracker.Type.JIRA).customBean("JIRA").build();
scanRequest.setBugTracker(bt);
flowService.initiateAutomation(scanRequest);
}
use of com.checkmarx.sdk.config.CxProperties in project cx-flow by checkmarx-ltd.
the class HelperServiceTest method testGetPresetFromSources.
@Test
public void testGetPresetFromSources() {
FlowProperties properties = new FlowProperties();
CxProperties cxProperties = new CxProperties();
JiraProperties jiraProperties = new JiraProperties();
cxProperties.setScanPreset(Constants.CX_DEFAULT_PRESET);
CxScannerService cxScannerService = new CxScannerService(cxProperties, null, null, null, null);
HelperService helperService = new HelperService(properties, cxScannerService, jiraProperties, null);
Sources sources = new Sources();
Sources.Source src1 = new Sources.Source();
src1.setFile("abc.java");
src1.setPath("abc.java");
Sources.Source src2 = new Sources.Source();
src2.setFile("abc.html");
src2.setPath("abc.html");
Sources.Source src3 = new Sources.Source();
src3.setFile("abc.css");
src3.setPath("abc.css");
Sources.Source src4 = new Sources.Source();
src4.setFile("buildspec.yml");
src4.setPath("buildspec.yml");
Map<String, Integer> sourceWeight = new HashMap<>();
sourceWeight.put("Java", 65);
sourceWeight.put("CSS", 15);
sourceWeight.put("HTML", 20);
sources.setLanguageStats(sourceWeight);
sources.setSources(Arrays.asList(src1, src2, src3, src4));
ObjectMapper mapper = new ObjectMapper();
System.out.println(HelperService.class.getResource(".").getPath());
File file = new File(getClass().getClassLoader().getResource("CxProfile.json").getFile());
try {
CxProfile[] cxProfiles = mapper.readValue(file, CxProfile[].class);
helperService.setProfiles(Arrays.asList(cxProfiles));
String preset = helperService.getPresetFromSources(sources);
assertEquals(preset, "Checkmarx Express");
} catch (IOException e) {
fail("Unexpected IO Exception");
}
}
use of com.checkmarx.sdk.config.CxProperties in project checkmarx-spring-boot-java-sdk by checkmarx-ltd.
the class FilterValidatorTest method verifySimpleFilterResult.
private static void verifySimpleFilterResult(List<Filter> filters, String severity, String status, String state, String name, String cweId, boolean expectedResult) {
ResultType finding = createFinding(status, state);
QueryType findingGroup = createFindingGroup(severity, name, cweId);
FilterValidator filterValidator = new FilterValidator();
EngineFilterConfiguration filterConfiguration = EngineFilterConfiguration.builder().simpleFilters(filters).build();
FilterInputFactory filterInputFactory = new FilterInputFactory(new CxProperties());
FilterInput filterInput = filterInputFactory.createFilterInputForCxSast(findingGroup, finding);
boolean passes = filterValidator.passesFilter(filterInput, filterConfiguration);
assertEquals(expectedResult, passes, "Unexpected simple filtering result.");
}
Aggregations