2022-02-17 16:16:55 +02:00
|
|
|
package reporting
|
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
|
|
|
|
piperGithub "github.com/SAP/jenkins-library/pkg/github"
|
2022-03-17 16:32:48 +02:00
|
|
|
"github.com/SAP/jenkins-library/pkg/log"
|
2022-02-17 16:16:55 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
type Uploader interface {
|
|
|
|
CreateIssue(ghCreateIssueOptions *piperGithub.CreateIssueOptions) error
|
|
|
|
}
|
|
|
|
|
2022-03-17 16:32:48 +02:00
|
|
|
// UploadSingleReportToGithub uploads a single report to GitHub
|
|
|
|
func UploadSingleReportToGithub(scanReport IssueDetail, token, APIURL, owner, repository string, assignees []string, uploader Uploader) error {
|
2022-02-17 16:16:55 +02:00
|
|
|
// JSON reports are used by step pipelineCreateSummary in order to e.g. prepare an issue creation in GitHub
|
|
|
|
// ignore JSON errors since structure is in our hands
|
|
|
|
markdownReport, _ := scanReport.ToMarkdown()
|
|
|
|
options := piperGithub.CreateIssueOptions{
|
|
|
|
Token: token,
|
|
|
|
APIURL: APIURL,
|
|
|
|
Owner: owner,
|
|
|
|
Repository: repository,
|
2022-03-17 16:32:48 +02:00
|
|
|
Title: scanReport.Title(),
|
2022-02-17 16:16:55 +02:00
|
|
|
Body: markdownReport,
|
|
|
|
Assignees: assignees,
|
|
|
|
UpdateExisting: true,
|
|
|
|
}
|
|
|
|
err := uploader.CreateIssue(&options)
|
|
|
|
if err != nil {
|
2022-03-17 16:32:48 +02:00
|
|
|
return fmt.Errorf("failed to upload results for '%v' into GitHub issue: %w", scanReport.Title(), err)
|
2022-02-17 16:16:55 +02:00
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
2022-03-17 16:32:48 +02:00
|
|
|
|
|
|
|
// UploadMultipleReportsToGithub uploads a number of reports to GitHub, one per IssueDetail to create transparency
|
|
|
|
func UploadMultipleReportsToGithub(scanReports *[]IssueDetail, token, APIURL, owner, repository string, assignees, trustedCerts []string, uploader Uploader) error {
|
|
|
|
for i := 0; i < len(*scanReports); i++ {
|
|
|
|
vuln := (*scanReports)[i]
|
|
|
|
title := vuln.Title()
|
|
|
|
markdownReport, _ := vuln.ToMarkdown()
|
|
|
|
options := piperGithub.CreateIssueOptions{
|
|
|
|
Token: token,
|
|
|
|
APIURL: APIURL,
|
|
|
|
Owner: owner,
|
|
|
|
Repository: repository,
|
|
|
|
Title: title,
|
|
|
|
Body: markdownReport,
|
|
|
|
Assignees: assignees,
|
|
|
|
UpdateExisting: true,
|
|
|
|
TrustedCerts: trustedCerts,
|
|
|
|
}
|
|
|
|
|
|
|
|
log.Entry().Debugf("Creating/updating GitHub issue(s) with title %v in org %v and repo %v", title, owner, repository)
|
|
|
|
err := uploader.CreateIssue(&options)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to upload results for '%v' into GitHub issue: %w", vuln.Title(), err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|