110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
|
# File 'lib/heimdall_tools/jfrog_xray_mapper.rb', line 110
def to_hdf
controls = []
vulnerability_count = 0
@project['data'].uniq.each do |vulnerability|
printf("\rProcessing: %s", $spinner.next)
vulnerability_count +=1
item = {}
item['tags'] = {}
item['descriptions'] = []
item['refs'] = NA_ARRAY
item['source_location'] = NA_HASH
item['descriptions'] = NA_ARRAY
item['id'] = vulnerability['id'].empty? ? OpenSSL::Digest::MD5.digest(vulnerability['summary'].to_s).unpack1('H*').to_s : vulnerability['id']
item['title'] = vulnerability['summary'].to_s
item['desc'] = format_control_desc(vulnerability)
item['impact'] = impact(vulnerability['severity'].to_s)
item['code'] = NA_STRING
item['results'] = finding(vulnerability)
item['tags']['nist'] = nist_tag(parse_identifiers(vulnerability, 'CWE'))
item['tags']['cweid'] = parse_identifiers(vulnerability, 'CWE')
controls << item
end
controls = collapse_duplicates(controls)
results = HeimdallDataFormat.new(profile_name: 'JFrog Xray Scan',
version: NA_STRING,
title: 'JFrog Xray Scan',
summary: 'Continuous Security and Universal Artifact Analysis',
controls: controls)
results.to_hdf
end
|