Refactoring, optimizations, and bug fixes (#183)

* Refactored logic out of scan.go into a scanner * Reduced cyclomatic complexity * More test cases * Batches EPSS calls for each componet's slice of vulns, increasing speed * More test cases and hardening * Additional Documentation * Uses the CycloneDX provided decoder * Refactors loader and afero references * Version bump to 0.4.8 * Refactored loader tests * HTML and STDIN renderers show filtering information if the severity flag is set * Test case coverage * Error handling if passed a bad arguments
devops-kung-fu · Dec 14, 2023 · 831aa1c · 831aa1c
1 parent 6493ced
commit 831aa1c
Show file tree

Hide file tree

Showing 27 changed files with 38,150 additions and 760 deletions.
diff --git a/.gitignore b/.gitignore
@@ -22,4 +22,5 @@ bomber
 
 /rest
 
-*-results.html
+*-results.html
+coverage.html
diff --git a/.hookz.yaml b/.hookz.yaml
@@ -31,7 +31,7 @@
           args: ["./..."]
         - name: "gocyclo: Check cyclomatic complexities"
           exec: gocyclo
-          args: ["-over", "13", "."]
+          args: ["-over", "9", "."]
         - name: Hinge
           exec: hinge
           args: ["."]

diff --git a/.vscode/launch.json b/.vscode/launch.json
@@ -98,7 +98,7 @@
             "request": "launch",
             "mode": "auto",
             "program": "${workspaceFolder}/main.go",
-            "args": ["--provider=ossindex", "--debug=true", "--output=html", "scan", "./_TESTDATA_/sbom/juiceshop.cyclonedx.json"]
+            "args": ["--provider=ossindex", "--debug=true", "--output=html", "--severity=high", "scan", "./_TESTDATA_/sbom/juiceshop.cyclonedx.json"]
         },
         {
             "name": "Debug File, Output HTML (osv - juiceshop)",
@@ -108,6 +108,14 @@
             "program": "${workspaceFolder}/main.go",
             "args": ["--debug=true", "--output=html", "scan", "./_TESTDATA_/sbom/juiceshop.cyclonedx.json"]
         },
+        {
+            "name": "Debug File (ossindex - merged)",
+            "type": "go",
+            "request": "launch",
+            "mode": "auto",
+            "program": "${workspaceFolder}/main.go",
+            "args": ["--provider=ossindex", "--debug=true", "scan", "./_TESTDATA_/sbom/merged.json"]
+        },
         {
             "name": "Debug File (ossindex - railsgoat)",
             "type": "go",

diff --git a/.vscode/settings.json b/.vscode/settings.json
@@ -14,9 +14,12 @@
         "Distro",
         "DKFM",
         "dpkg",
+        "DXJSON",
+        "DXXML",
         "Encricher",
         "Epss",
         "errcheck",
+        "exitcode",
         "gofmt",
         "gomod",
         "gookit",

diff --git a/Makefile b/Makefile
@@ -19,6 +19,7 @@ build: ## Builds the application
 
 test: ## Runs tests and coverage
 	go test -v -coverprofile=coverage.out ./... && go tool cover -func=coverage.out
+	go tool cover -html=coverage.out -o coverage.html
 
 check: build ## Tests the pre-commit hooks if they exist
 	hookz reset --verbose --debug --verbose-output