Develop #63
Merged
Develop #63
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
wiliansilvazup
commented
Oct 15, 2020
•
wiliansilvazup
commented
- Getting automatic csproj, package-lock, requirements
- Fixing dashboard of company visible only admin
- Removing fields Type, VulnerabilityBellow and Version from analysis
- Adding New permission supervisor
- Adding token of organization
- Adding create repository when pass via CLI using token of organization
- Adding screen not found
- Change to repository and user unique names
- Adding screen to manipulate false positives, risk accept, vulnerabilities and corrected
- Adding flag to skip and not broken pipeline if hash is false positive
- Adding flag to skip and not broken pipeline if hash is risk accept
- Adding CLI image to docker
- Removing DEPRECATED manager
- Fixing regexes in horusec-java
* adding dynamic detection of csproj, yarn.lock, package-lock.json and requirements.txt * file path by ext unity tests
* e-mail Added the template of e-mail to a user is invited to the organization * Fixing go lint
* Rewrite i18n values for external pages and dashsboard screen * Adjusting i18 values in repositories screen * 🛠️ Adjusting redirect routes when the call is external of manager (#19) * Hotfix/fixing redirect and output bigger (#21) * Fixing redirect in email template reset-password * Fixing code output when exists many content and bad read * Fixing fmt and set total output to down * Hotfix/unique names (#28) * Adding unique names migration * Adding validations to unique names and unity tests * Fixing swagger in horusec-analytics (#27) * Add i18n values to enUS Co-authored-by: Wilian Gabriel <63816070+wiliansilvazup@users.noreply.github.com> Co-authored-by: nathanmartinszup <63246935+nathanmartinszup@users.noreply.github.com>
…#24) * Removing fields type, vulnerableBellow and version from Vulnerability * Fixing e2e and unit testss * Change pipeline to use docker-compose * Fixing docker-compose.test * Fixing deployment * Fixing compose
* 🛠️ Adjusting redirect routes when the call is external of manager (#19) * Hotfix/fixing redirect and output bigger (#21) * Fixing redirect in email template reset-password * Fixing code output when exists many content and bad read * Fixing fmt and set total output to down * Hotfix/unique names (#28) * Adding unique names migration * Adding validations to unique names and unity tests * Fixing swagger in horusec-analytics (#27) * Hotfix/change images generate token (#31) * Change images to generate token * Adding gif usage horusec * Adding gif usage horusec Co-authored-by: Lucas Bruno <69604366+lucasbrunozup@users.noreply.github.com> Co-authored-by: nathanmartinszup <63246935+nathanmartinszup@users.noreply.github.com>
* Adding company role in get all companies * Adding unity tests
* 🔑 Handler tokens of organization * 🛡️ Added rules in manager organizations
* 👷 Initial structure to not found page * 👌 Finalizing page of not found * 🔙 Added option to back to organization screen when in home page * 🔨 Fixing version in package json
…g constraints in database (#38)
* Adding cli dockerfile * Adding horusec as entrypoint * Removing docker from image * Adding docker-entrypoint * Using docker dind * Downgrade docker dind * Using entrypoint * Renaming entrypoint to horusec-cli * Updating documentation * Adding license * Updating vendor Co-authored-by: Horusec <horusec@zup.com.br>
…ded in all handlers (#53)
* Create repository by cli flag, update list repository to list all repositories to company admin * Adding tests and validation to list all repositories of company if i am admin * Removing duplicated code to list repositories to company admin * Removing unnecessary unity test * Fixing unity tests and adding middleware to company admin * Adding missing test * Updating analytic routes by repository to accept admins of company * Fixing broken e2e tests Co-authored-by: Wilian Gabriel <wilian.silva@zup.com.br>
* Initial strucute for false positive screen * Finished false posite screen and add supervisor role
* Change struct of analysis * Fixing fmt lint entity and create migration files * Adding get all dto and method * Fixing migration * Adding base management repository * Adding get all vuln management data * Adding management repository unity tests * adding management controller get all * adding get all management data * adding management handler unity tests * Adding update method in repository * Adding update method in controller * adding management handler put * Adding management handler unity tests * Fixing create analysis * Adding app sec role * Fixing list vuln management error where vulns are duplicating, fixing swagger errors * Removing unnecessary nolint and improving code * Fixing to send analysis correctly to horusec-api * Adding separated api to update status and type * Adding new vulnerability status and type enums * Fixing lint * Fixing lint errors * Removing status and updating apis * Updating migration * Fixing output to show vulnerability to fix * Fixing lint and project errors * Fixing management unit tests * Fixing errors in list vulns * Fixing some type errors * Updating output to print false positive and risk accept * Start fixing tests * Fixing tests * Fixing vulnerabilities unity tests * Fixing analytic queries * Fixing tests * Fixing analytic repositoty unit tests * Adding tests on cli * Adding more content * Fixing hash generator * Fixing hash generator * Fixing vulnerability test * Adding devkit entities and types units tests * Adding Unit tests * Adding unit tests * Fixing license * Adding analysis tests * Fixing lint * fixing e2e tests * Updating e2e tests * Fixing tests in repository * FIxing fmt lint * Parse horusec analysis response correctly * Fixing lint * Fixing errors in vulns details * Fixing e2e test * Updating api cors * Updating cors Co-authored-by: nathan <nathan.martins@zup.com.br> Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br>
* Fixing supervisor middleware validation to company admins * Fixing load data in vulnerabilities table * Fixing false positive in CLI * Updating swagger * Fixing docs * Fixing lint Co-authored-by: lucas.bruno <lucas.bruno@zup.com.br> Co-authored-by: Wilian Gabriel <wilian.silva@zup.com.br>
* Fixing security pipeline in horusec * Fixing security pipeline in horusec * Fixing security pipeline in horusec * Fixing security pipeline in horusec * Fixing readme cli * Fixing readme cli
wiliansilvazup
requested review from
igorreiszup and
lucasbrunozup
as code owners
wiliansilvazup
requested review from
nathanmartinszup and
nathannascimentozup
as code owners
* Adding order by severity and type * Adding filter by type * Fixing lint errors and adding unity tests * Fixing order by error * Updating swagger * Fixing fmt errors
* Added new filter in false positive screen * Added success messages * Added tag with color in severity
* Added new filter in false positive screen * Added success messages * Added tag with color in severity * Removing supervisor role in company * Added permission to handler repository
nathanmartinszup
approved these changes
Oct 19, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.