cloudsploit

package
v0.11.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 5, 2024 License: MIT Imports: 31 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	WARN_MESSAGE                   = "UNKNOWN status detected. Some scans may have failed. Please take action if you don't have enough permissions."
	STATUS_DETAIL_LENGTH_THRESHOLD = 30000
	LOW_SCORE                      = 3.0
)
View Source 
const (
	REGION_US_EAST_1 = "us-east-1"
	API_RETRY_NUM    = 10
)
View Source 
const (
	CLOUDSPLOIT_FILE = "yaml/cloudsploit.yaml"
)

Variables

This section is empty.

Functions

This section is empty.

Types

type CloudsploitConfig 

type CloudsploitConfig struct {
	ResultDir      string
	ConfigDir      string
	CloudsploitDir string
	ConfigPath     string
	MaxMemSizeMB   int
	// contains filtered or unexported fields
}

func NewCloudsploitConfig 

func NewCloudsploitConfig(
	resultDir string,
	configDir string,
	cloudsploitDir string,
	region string,
	maxMem int,
	l logging.Logger,
) *CloudsploitConfig

type CloudsploitSetting added in v0.11.0 

type CloudsploitSetting struct {
	DefaultScore          float32                  `yaml:"defaultScore" validate:"required"`
	IgnorePlugin          []string                 `yaml:"ignorePlugin"`
	SpecificPluginSetting map[string]PluginSetting `yaml:"specificPluginSetting,omitempty" validate:"dive"`
}

func LoadCloudsploitSetting added in v0.11.0 

func LoadCloudsploitSetting(path string) (*CloudsploitSetting, error)

func (*CloudsploitSetting) IsIgnoreMessagePattern added in v0.11.0 

func (c *CloudsploitSetting) IsIgnoreMessagePattern(plugin string, messages []string) bool

func (*CloudsploitSetting) IsIgnorePlugin added in v0.11.0 

func (c *CloudsploitSetting) IsIgnorePlugin(plugin string) bool

func (*CloudsploitSetting) IsSkipResourceNamePattern added in v0.11.0 

func (c *CloudsploitSetting) IsSkipResourceNamePattern(plugin, resourceName, aliasResourceName string) bool

type EmptyOutputError added in v0.6.0 

type EmptyOutputError struct {
	// contains filtered or unexported fields
}

EmptyOutputError sometimes happen caused by cloudsploit bug(#557). It will may be recovered by re-scanninng. ref https://github.com/aquasecurity/cloudsploit/issues/557

func (EmptyOutputError) Error added in v0.6.0 

func (e EmptyOutputError) Error() string

type PluginRecommend added in v0.11.0 

type PluginRecommend struct {
	Risk           *string `yaml:"risk,omitempty"`
	Recommendation *string `yaml:"recommendation,omitempty"`
}

type PluginSetting added in v0.11.0 

type PluginSetting struct {
	Score                   *float32         `yaml:"score,omitempty"`
	SkipResourceNamePattern []string         `yaml:"skipResourceNamePattern,omitempty"`
	IgnoreMessagePattern    []string         `yaml:"ignoreMessagePattern,omitempty" validate:"dive,regexp"`
	Tags                    []string         `yaml:"tags,omitempty"`
	Recommend               *PluginRecommend `yaml:"recommend,omitempty"`
}

type SqsHandler 

type SqsHandler struct {
	// contains filtered or unexported fields
}

func NewSqsHandler 

func NewSqsHandler(
	fc finding.FindingServiceClient,
	ac alert.AlertServiceClient,
	awsc awsClient.AWSServiceClient,
	csConfig *CloudsploitConfig,
	settingYamlPath string,
	l logging.Logger,
) (*SqsHandler, error)

func (*SqsHandler) CallAnalyzeAlert 

func (s *SqsHandler) CallAnalyzeAlert(ctx context.Context, projectID uint32) error

func (*SqsHandler) HandleMessage 

func (s *SqsHandler) HandleMessage(ctx context.Context, sqsMsg *types.Message) error

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.