README
¶
Sirius Go API SDK
A shared Go library for the Sirius vulnerability scanning platform, providing core data models, database operations, and service integrations.
Overview
The Sirius Go API SDK provides a unified interface for:
- Core Data Models: Host, Port, Vulnerability, Service structures
- Database Operations: PostgreSQL via GORM ORM
- Message Queue: RabbitMQ pub/sub integration
- Key-Value Store: ValKey/Redis operations
- NVD Integration: CVE data enrichment from National Vulnerability Database
- Source Attribution: Track which tool found each piece of data
Boundary With Procyon
go-api remains the shared Sirius SDK for domain models and additive helpers.
It is the right place for Sirius-facing DTOs, persistence helpers, and neutral
contracts that are reused across multiple Sirius repos.
The Procyon host/plugin runtime contract is intentionally not part of
go-api. That contract is owned by the Procyon repository and is exposed there
from github.com/SiriusScan/procyon/pkg/runtimeplugin.
Add new packages to go-api only when:
- More than one repo needs the same neutral Sirius contract or helper.
- The contract is not owned by a single runtime or control-plane component.
- The change can be released additively without breaking existing consumers.
Installation
go get github.com/SiriusScan/go-api@latest
Quick Start
package main
import (
"github.com/SiriusScan/go-api/sirius"
"github.com/SiriusScan/go-api/sirius/host"
"github.com/SiriusScan/go-api/sirius/postgres"
)
func main() {
// Initialize database connection
if err := postgres.InitDB(); err != nil {
panic(err)
}
// Create host data
hostData := sirius.Host{
IP: "192.168.1.100",
Hostname: "server.local",
Ports: []sirius.Port{
{Number: 22, Protocol: "tcp", State: "open"},
{Number: 80, Protocol: "tcp", State: "open"},
},
}
// Add host to database
if err := host.AddHost(hostData); err != nil {
panic(err)
}
// Retrieve host
retrieved, err := host.GetHost("192.168.1.100")
if err != nil {
panic(err)
}
println("Found host:", retrieved.IP)
}
Features
Core Data Models
type Host struct {
HID string
OS string
OSVersion string
IP string
Hostname string
Ports []Port
Services []Service
Vulnerabilities []Vulnerability
CPE []string
Agent *SiriusAgent
}
type Port struct {
Number int `json:"number"` // Port number (22, 80, 443)
Protocol string `json:"protocol"` // tcp, udp
State string `json:"state"` // open, closed, filtered
}
type Vulnerability struct {
VID string `json:"vid"` // CVE ID
Title string `json:"title"`
Description string `json:"description"`
RiskScore float64 `json:"risk_score"` // CVSS score
}
Database Operations
import "github.com/SiriusScan/go-api/sirius/host"
// Add or update host
err := host.AddHost(hostData)
// Get host by IP
hostData, err := host.GetHost("192.168.1.100")
// Get all hosts
hosts, err := host.GetAllHosts()
// Delete host
err := host.DeleteHost("192.168.1.100")
Source Attribution
Track which tool discovered each finding:
import (
"github.com/SiriusScan/go-api/sirius/host"
"github.com/SiriusScan/go-api/sirius/postgres/models"
)
// Define scan source
source := models.ScanSource{
Name: "nmap",
Version: "7.94",
Config: "ports:1-1000;template:quick",
}
// Add host with source attribution
err := host.AddHostWithSource(hostData, source)
// Get host with source history
hostWithSources, err := host.GetHostWithSources("192.168.1.100")
Message Queue
import "github.com/SiriusScan/go-api/sirius/queue"
// Publish message
err := queue.Publish("scan", scanMessage)
// Listen for messages
queue.Listen("scan", func(msg string) {
// Process message
})
Key-Value Store
import "github.com/SiriusScan/go-api/sirius/store"
// Set value
err := store.SetValue(ctx, "key", "value")
// Get value
value, err := store.GetValue(ctx, "key")
// Delete value
err := store.DeleteValue(ctx, "key")
Configuration
Environment Variables
Database (PostgreSQL)
DATABASE_HOST=localhost
DATABASE_PORT=5432
DATABASE_USER=postgres
DATABASE_PASSWORD=postgres
DATABASE_NAME=sirius
Message Queue (RabbitMQ)
RABBITMQ_HOST=localhost
RABBITMQ_PORT=5672
RABBITMQ_USER=guest
RABBITMQ_PASSWORD=guest
Key-Value Store (ValKey/Redis)
VALKEY_HOST=localhost
VALKEY_PORT=6379
Development
Local Development with Replace Directive
For projects in the same repository or local development:
go.mod:
module github.com/SiriusScan/your-project
// Use local SDK for development
replace github.com/SiriusScan/go-api => ../go-api
require (
github.com/SiriusScan/go-api v0.0.11
)
Benefits:
- Test SDK changes immediately
- No need to publish for every change
- Easy cross-project debugging
Running Tests
# Run all tests
go test ./...
# Run with coverage
go test -cover ./...
# Run specific package tests
go test ./sirius/postgres/...
Building
# Build all packages
go build ./...
# Verify no issues
go vet ./...
# Format code
gofmt -w .
Releasing New Versions
Automatic Release (Recommended)
Push to main branch to trigger automatic release:
# Commit changes
git add .
git commit -m "feat: add new feature"
git push origin main
# CI/CD automatically:
# 1. Runs tests and linting
# 2. Creates new patch version (v0.0.10 → v0.0.11)
# 3. Generates GitHub release
# 4. Notifies dependent projects
Manual Release
Create and push a Git tag:
# Create tag
git tag v0.1.0
# Push tag
git push origin v0.1.0
# CI/CD creates GitHub release automatically
Using Automation Scripts
Check versions across projects:
./scripts/check-versions.sh
Update all dependent projects:
./scripts/update-dependents.sh v0.0.11
Documentation
Comprehensive Guides
- SDK Architecture - Design, patterns, and integration
- Release Process - How to release and update
- CHANGELOG - Version history and breaking changes
- API Documentation - Detailed API reference
Breaking Changes
v0.0.11 (Latest)
Port.ID → Port.Number
Port.IDfield renamed toPort.Numberto resolve database conflicts- Migration required for existing databases
- See CHANGELOG for migration guide
Before:
port := sirius.Port{
ID: 22,
Protocol: "tcp",
}
After:
port := sirius.Port{
Number: 22,
Protocol: "tcp",
}
Projects Using This SDK
- app-scanner - Port scanning and service detection engine
- app-agent - Agent management and command execution
- sirius-api - REST API server (via Docker container)
- sirius-engine - Core scanning orchestration (via Docker container)
Contributing
- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'feat: add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
Guidelines:
- Follow Go idioms and best practices
- Add tests for new features
- Update documentation
- Use conventional commits
Support
- Issues: GitHub Issues
- Documentation: SDK Docs
- Release Process: Release Guide
License
This project is licensed under the terms specified in LICENSE.
Changelog
For a detailed list of changes, see CHANGELOG.md.
Current Version: v0.0.11
Go Version: 1.23+
Maintained by: Sirius Team
Directories
¶
| Path | Synopsis |
|---|---|
|
cmd
|
|
|
test_postgres
command
|
|
|
002_source_attribution
command
|
|
|
003_fix_junction_tables
command
|
|
|
004_add_sbom_schema
command
|
|
|
004_add_sbom_schema/rollback
command
|
|
|
004_add_sbom_schema/test
command
|
|
|
005_fix_critical_schema_issues
command
|
|
|
006_add_events_table
command
|
|
|
postgres
File: connection.go
|
File: connection.go |
|
postgres/models
File: event.go
|
File: event.go |
|
slogger
Package slogger provides a shared LOG_LEVEL-aware slog initialization helper.
|
Package slogger provides a shared LOG_LEVEL-aware slog initialization helper. |
|
store/templates
Package templates is the single source of truth for the Valkey contracts that bind the scanner stack together.
|
Package templates is the single source of truth for the Valkey contracts that bind the scanner stack together. |
Click to show internal directories.
Click to hide internal directories.