review

package

v1.0.4 Latest Latest Go to latest Published: Jan 10, 2024 License: MIT Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/ca-risken/security-review

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
type GithubPREvent
type GitleaksScanner
- func (s *GitleaksScanner) Scan(ctx context.Context, repo *github.Repository, sourceCodePath string, ...) ([]*ScanResult, error)
type ReviewOption
type ReviewService
- func NewReviewService(ctx context.Context, opt *ReviewOption, logger *slog.Logger) ReviewService
type ScanResult
type Scanner
- func NewGitleaksScanner(logger *slog.Logger) Scanner
- func NewSemgrepScanner(logger *slog.Logger) Scanner
type SemgrepScanner
- func (s *SemgrepScanner) Scan(ctx context.Context, repo *github.Repository, sourceCodePath string, ...) ([]*ScanResult, error)

Constants ¶

View Source

const (
	GITLEAKS_REVIEW_COMMENT_TEMPLATE = `` /* 647-byte string literal not displayed */

)

View Source

const (
	NO_REVIEW_COMMENT = "" /* 127-byte string literal not displayed */
)

View Source

const (
	RISKEN_COMMENT_TEMPLATE = `` /* 128-byte string literal not displayed */

)

View Source

const (
	SEMGREP_REVIEW_COMMENT_TEMPLATE = `` /* 162-byte string literal not displayed */

)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type GithubPREvent ¶

type GithubPREvent struct {
	Action      string              `json:"action"`
	Number      int                 `json:"number"`
	PullRequest *github.PullRequest `json:"pull_request"`
	Repository  *github.Repository  `json:"repository"`
	Owner       string              `json:"owner"`
	RepoName    string              `json:"repo_name"`
}

GithubPREvent is a struct for GitHub Pull Request Event. ref: https://docs.github.com/ja/webhooks/webhook-events-and-payloads#pull_request example: https://github.com/pingdotgg/sample_hooks/blob/main/github_pr_opened.json

type GitleaksScanner ¶

type GitleaksScanner struct {
	// contains filtered or unexported fields
}

func (*GitleaksScanner) Scan ¶

func (s *GitleaksScanner) Scan(ctx context.Context, repo *github.Repository, sourceCodePath string, changeFiles []*github.CommitFile) ([]*ScanResult, error)

type ReviewOption ¶

type ReviewOption struct {
	GithubToken       string
	GithubEventPath   string
	GithubWorkspace   string
	ErrorFlag         bool
	RiskenConsoleURL  string
	RiskenApiEndpoint string
	RiskenApiToken    string
}

type ReviewService ¶

type ReviewService interface {
	Run(ctx context.Context) error
}

func NewReviewService ¶

func NewReviewService(ctx context.Context, opt *ReviewOption, logger *slog.Logger) ReviewService

type ScanResult ¶

type ScanResult struct {
	ScanID        string
	File          string
	Line          int
	DiffHunk      string
	ReviewComment string
	GitHubURL     string
	ScanResult    any
	RiskenURL     string
}

type Scanner ¶

type Scanner interface {
	Scan(ctx context.Context, repo *github.Repository, sourceCodePath string, changeFiles []*github.CommitFile) ([]*ScanResult, error)
}

func NewGitleaksScanner ¶

func NewGitleaksScanner(logger *slog.Logger) Scanner

func NewSemgrepScanner ¶

func NewSemgrepScanner(logger *slog.Logger) Scanner

type SemgrepScanner ¶

type SemgrepScanner struct {
	// contains filtered or unexported fields
}

func (*SemgrepScanner) Scan ¶

func (s *SemgrepScanner) Scan(ctx context.Context, repo *github.Repository, sourceCodePath string, changeFiles []*github.CommitFile) ([]*ScanResult, error)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL