Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Consolidate local target checks #416

Closed
wants to merge 44 commits into from
Closed

Consolidate local target checks #416

wants to merge 44 commits into from

Conversation

ikretz
Copy link
Contributor

@ikretz ikretz commented Jul 15, 2024
edited
Loading

This PR makes three principal changes:

  1. It defines functions in guarddog/utils/archives.py for checking whether a file extension is for a supported archive format and uses them pervasively

  2. It clarifies the conditions under which Guarddog will decide to perform a local scan on a target: whenever the target is a directory or a regular file in the local filesystem. It also eliminates as much as possible duplicate checking for whether the target is local and what kind of local target it is (file or directory)

  3. It makes sure that PackageScanner.scan_local() uses its callback argument, closing issue Unused callback function argument in PackageScanner #411

sobregosodd and others added 30 commits June 25, 2024 11:48
@sobregosodd
adding initial yara support
8937fca
@sobregosodd
adding initial yara support
741a505
@sobregosodd
adding correct messaging
ce64828
@sobregosodd
tide before hotfix
3186c52
@sobregosodd
Merge branch 'main' into s.obregoso/feat_yara
e93fe97
@sobregosodd
merge from main
49a8766
@sobregosodd
adding initial yara support
7b92492
@sobregosodd
add support for yara
62b0c37
@sobregosodd
add support for yara
23f4c17
@sobregosodd
tide
0425ec8
@sobregosodd
adding initial yara support
d69960d
@sobregosodd
add support for yara
6ba3b73
@sobregosodd
tide
ac52e2e
@sobregosodd
adding rules detection
1c2d084
@sobregosodd
tide cli
9d6f301
@sobregosodd
improving cli to admit dynamic amount of languages
de01733
@sobregosodd
typo in test
134ae0e
@sobregosodd
adding comments to click dynamic grouping
a3e5412
@sobregosodd
Merge branch 'main' into s.obregoso/feat_yara
21b2213
@sobregosodd
lint
b2be94c
@sobregosodd
Adding docs
d10b480
@sobregosodd
Adding docs
fbb0648
@sobregosodd
removing ecosystem hardocded code
d2fff62
@ikretz
Consolidate archive extension checking
81c0425
@ikretz
Use callback function
815a3e2
@sobregosodd
added sarif tests and reworked the SOURCECODE_RULES variable concept
84d861e
@sobregosodd
Merge branch 'main' into s.obregoso/feat_yara
ccf15e2
@sobregosodd
adding dependencies
aeb8355
@sobregosodd
fixing missing rename references
ff0466b
@sobregosodd
missing step in workflow
0a46085
@ikretz ikretz changed the title Consolidate archive file extension checking Consolidate local target checks Jul 17, 2024
github-advanced-security[bot]
github-advanced-security bot found potential problems Jul 17, 2024
View reviewed changes
requirements.txt
wcmatch==8.4.1 ; python_version >= "3.10" and python_version < "4" \
--hash=sha256:3476cd107aba7b25ba1d59406938a47dc7eec6cfd0ad09ff77193f21a964dee7 \
--hash=sha256:b1f042a899ea4c458b7321da1b5e3331e3e0ec781583434de1301946ceadb943
wcwidth==0.2.6 ; python_version >= "3.10" and python_version < "4" \
--hash=sha256:795b138f6875577cd91bba52baf9e445cd5118fd32723b460e30a0af30ea230e \
--hash=sha256:a5220780a404dbe3353789870978e472cfe477761f06ee55077256e509b156d0
yara-python==4.5.1 ; python_version >= "3.10" and python_version < "4" \

Check warning

Code scanning / GuardDog-pypi

GuardDog rule: single_python_file Warning

This package has 1 or fewer Python source files
requirements.txt
@@ -367,6 +367,9 @@
--hash=sha256:c05b847200ae72200e47c30d0b11d6f130a88e2f7b83b75751fd3a3344fd3168 \
--hash=sha256:c0c90e645bd1e870414efbbc997443176b3432aa7f2e48551f623edac2086bde \
--hash=sha256:fbbc043c155e153be837fdf208063f3d7748934077968bc20b21efed502a2d6d
setuptools==70.3.0 ; python_version >= "3.10" and python_version < "4" \

Check warning

Code scanning / GuardDog-pypi

GuardDog rule: bundled_binary Warning

Binary file/s detected in package:
3471b6140eadc6412277dbbefe3fef8c345a0f1a59776086b80a3618c3a83e3b: gui-64.exe (exe)
32acc1bc543116cbe2cff10cb867772df2f254ff2634c870aef0b46c4b696fdb: cli-32.exe (exe), cli.exe (exe)
b9a7d08da880dfac8bcf548eba4b06fb59b6f09b17d33148a0f6618328926c61: cli-arm64.exe (exe)
e694f4743405c8b5926ff457db6fe7f1a12dec7c16a9c3864784d3f4e07ae097: gui-arm64.exe (exe)
85dae1e95d77845f2cb59bcac3d4afe74bbe4c91a9bcc5bf4a71cd43104dbe7c: gui-32.exe (exe), gui.exe (exe)
bbb3de5707629e6a60a0c238cd477b28f07f0066982fda953fa6fcec39073a4a: cli-64.exe (exe)
@ikretz ikretz closed this Jul 17, 2024
@ikretz ikretz deleted the ikretz/fix/package-scanner-callback branch July 17, 2024 10:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ikretz @sobregosodd