From 074443619fa99cbb17be0de94d059e80dcde914a Mon Sep 17 00:00:00 2001
From: crozzy <joseph.crosland@gmail.com>
Date: Fri, 15 Nov 2024 13:00:11 -0800
Subject: [PATCH] cli: add command to convert Vulnerability Reports

The convert command is able to take a Vulnerability Report in JSON and
covert it to Quay secscan format or sarif format.

Signed-off-by: crozzy <joseph.crosland@gmail.com>
---
 cmd/clair-action/convert.go | 86 +++++++++++++++++++++++++++++++++++++
 cmd/clair-action/main.go    |  1 +
 2 files changed, 87 insertions(+)
 create mode 100644 cmd/clair-action/convert.go

diff --git a/cmd/clair-action/convert.go b/cmd/clair-action/convert.go
new file mode 100644
index 0000000..8c103d8
--- /dev/null
+++ b/cmd/clair-action/convert.go
@@ -0,0 +1,86 @@
+package main
+
+import (
+	"encoding/json"
+	"fmt"
+	"io"
+	"os"
+
+	"github.com/quay/clair-action/output"
+	"github.com/quay/claircore"
+	"github.com/urfave/cli/v2"
+)
+
+var convertCmd = &cli.Command{
+	Name:    "convert",
+	Aliases: []string{"c"},
+	Usage:   "Convert a Clair Vulnerability report to the Quay secscan format",
+	Action:  convert,
+	Flags: []cli.Flag{
+		&cli.PathFlag{
+			Name:    "file-path",
+			Value:   "",
+			Usage:   "where to look for the Clair Vulnerability report to convert",
+			EnvVars: []string{"FILE_PATH"},
+		},
+		&cli.GenericFlag{
+			Name:    "format",
+			Aliases: []string{"f"},
+			Value: &EnumValue{
+				Enum:    []string{sarifFmt, quayFmt},
+				Default: quayFmt,
+			},
+			Usage:   "what output format the results should be in",
+			EnvVars: []string{"FORMAT"},
+		},
+	},
+}
+
+func convert(c *cli.Context) error {
+	var (
+		// All arguments
+		filePath = c.String("file-path")
+		format   = c.String("format")
+	)
+	vulnReportFile, err := os.Open(filePath)
+	if err != nil {
+		return fmt.Errorf("error opening file: %v", err)
+	}
+
+	defer vulnReportFile.Close()
+
+	bs, err := io.ReadAll(vulnReportFile)
+	if err != nil {
+		return fmt.Errorf("error reading file data: %v", err)
+	}
+
+	var vr claircore.VulnerabilityReport
+	err = json.Unmarshal(bs, &vr)
+	if err != nil {
+		return fmt.Errorf("error unmarshaling Vulnerability report: %v", err)
+	}
+	switch format {
+	case sarifFmt:
+		tw, err := output.NewSarifWriter(os.Stdout)
+		if err != nil {
+			return fmt.Errorf("error creating sarif report writer: %v", err)
+		}
+		err = tw.Write(&vr)
+		if err != nil {
+			return fmt.Errorf("error writing sarif report: %v", err)
+		}
+	case quayFmt:
+		quayReport, err := output.ReportToSecScan(&vr)
+		if err != nil {
+			return fmt.Errorf("error creating quay format report: %v", err)
+		}
+		b, err := json.MarshalIndent(quayReport, "", "  ")
+		if err != nil {
+			return fmt.Errorf("could not marshal quay report: %v", err)
+		}
+		fmt.Println(string(b))
+	default:
+		return fmt.Errorf("unrecognized format: %q", format)
+	}
+	return nil
+}
diff --git a/cmd/clair-action/main.go b/cmd/clair-action/main.go
index a7832d8..a40d153 100644
--- a/cmd/clair-action/main.go
+++ b/cmd/clair-action/main.go
@@ -44,6 +44,7 @@ func main() {
 		Commands: []*cli.Command{
 			reportCmd,
 			updateCmd,
+			convertCmd,
 		},
 		Flags: []cli.Flag{
 			&cli.StringFlag{