File: stride.go

package info (click to toggle)
vuls 0.7.0-1
  • links: PTS, VCS
  • area: main
  • in suites: experimental
  • size: 3,708 kB
  • sloc: makefile: 5
file content (81 lines) | stat: -rw-r--r-- 2,328 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
 
package report

import (
	"bytes"
	"fmt"
	"net/http"

	"strconv"
	"strings"

	"github.com/future-architect/vuls/config"
	"github.com/future-architect/vuls/models"
)

// StrideWriter send report to Stride
type StrideWriter struct{}
type strideSender struct{}

func (w StrideWriter) Write(rs ...models.ScanResult) (err error) {
	conf := config.Conf.Stride

	for _, r := range rs {
		w := strideSender{}

		serverInfo := fmt.Sprintf("%s", r.ServerInfo())
		message := fmt.Sprintf(`{"body":{"version":1,"type":"doc","content":[{"type":"paragraph","content":[{"type":"text","text":" %s  "}]}]}}`,
			serverInfo,
		)
		if err = w.sendMessage(conf.HookURL, conf.AuthToken, message); err != nil {
			return err
		}

		for _, vinfo := range r.ScannedCves {
			maxCvss := vinfo.MaxCvssScore()
			severity := strings.ToUpper(maxCvss.Value.Severity)
			if severity == "" {
				severity = "?"
			}

			message = fmt.Sprintf(`{"body":{"version":1,"type":"doc","content":[{"type":"paragraph","content":[{"type":"text","text":" %s ","marks": [ { "type": "link", "attrs": { "href": "https://nvd.nist.gov/vuln/detail/%s", "title": "cve" } } ]}]}]}}`,
				vinfo.CveID,
				vinfo.CveID,
			)
			if err = w.sendMessage(conf.HookURL, conf.AuthToken, message); err != nil {
				return err
			}

			message = fmt.Sprintf(`{"body":{"version":1,"type":"doc","content":[{"type":"paragraph","content":[{"type":"text","text":" %s (%s) "}]}]}}`,
				strconv.FormatFloat(maxCvss.Value.Score, 'f', 1, 64),
				severity,
			)
			if err = w.sendMessage(conf.HookURL, conf.AuthToken, message); err != nil {
				return err
			}

			message = fmt.Sprintf(`{"body":{"version":1,"type":"doc","content":[{"type":"paragraph","content":[{"type":"text","text":" %s "}]}]}}`,
				vinfo.Summaries(config.Conf.Lang, r.Family)[0].Value,
			)
			if err = w.sendMessage(conf.HookURL, conf.AuthToken, message); err != nil {
				return err
			}
		}
	}
	return nil
}

func (w strideSender) sendMessage(uri, token, jsonStr string) error {
	reqs, err := http.NewRequest("POST", uri, bytes.NewBuffer([]byte(jsonStr)))
	if err != nil {
		return err
	}
	reqs.Header.Add("Content-Type", "application/json")
	reqs.Header.Add("Authorization", "Bearer "+token)
	client := &http.Client{}
	resp, err := client.Do(reqs)
	if err != nil {
		return err
	}
	defer resp.Body.Close()
	return nil
}