Add scan id flag to risk management command (AST-000)

cx-daniel-greenspan · cx-daniel-greenspan · commit 46e5397d867b · 2025-04-09T19:11:10.000+03:00
diff --git a/internal/commands/result.go b/internal/commands/result.go
@@ -234,13 +234,14 @@ func riskManagementSubCommand(riskManagement wrappers.RiskManagementWrapper, fea
 		Long:  "The risk-management command displays risk management results for a specific project in Checkmarx One",
 		Example: heredoc.Doc(
 			`
-			$ cx results risk-management --project-id <project Id> --limit <limit> (1-50, default: 50)
+			$ cx results risk-management --project-id <project Id> --scan-id <scan ID> --limit <limit> (1-50, default: 50)
 		`,
 		),
 		RunE: runRiskManagementCommand(riskManagement, featureFlagsWrapper),
 	}
 
 	riskManagementCmd.PersistentFlags().String(commonParams.ProjectIDFlag, "", "Project ID")
+	riskManagementCmd.PersistentFlags().String(commonParams.ScanIDFlag, "", "Scan ID")
 	riskManagementCmd.PersistentFlags().Int(commonParams.LimitFlag, -1, "Limit")
 
 	addFormatFlag(riskManagementCmd, printer.FormatJSON, printer.FormatTable, printer.FormatList)
@@ -355,14 +356,16 @@ func runRiskManagementCommand(riskManagement wrappers.RiskManagementWrapper, fea
 ) func(cmd *cobra.Command, args []string) error {
 	return func(cmd *cobra.Command, args []string) error {
 		projectID, _ := cmd.Flags().GetString(commonParams.ProjectIDFlag)
+		scanID, _ := cmd.Flags().GetString(commonParams.ScanIDFlag)
+
 		limit, _ := cmd.Flags().GetInt(commonParams.LimitFlag)
 
 		flagResponse, _ := wrappers.GetSpecificFeatureFlag(featureFlagsWrapper, wrappers.RiskManagementEnabled)
 		ASPMEnabled := flagResponse.Status
 		if !ASPMEnabled {
 			return errors.Errorf("%s", "Risk management results are currently unavailable for your tenant.")
 		}
-		results, err := getRiskManagementResults(riskManagement, projectID)
+		results, err := getRiskManagementResults(riskManagement, projectID, scanID)
 		if err != nil {
 			return err
 		}
@@ -372,8 +375,8 @@ func runRiskManagementCommand(riskManagement wrappers.RiskManagementWrapper, fea
 	}
 }
 
-func getRiskManagementResults(riskManagement wrappers.RiskManagementWrapper, projectID string) (*wrappers.ASPMResult, error) {
-	ASPMResult, errorModel, err := riskManagement.GetTopVulnerabilitiesByProjectID(projectID)
+func getRiskManagementResults(riskManagement wrappers.RiskManagementWrapper, projectID, scanID string) (*wrappers.ASPMResult, error) {
+	ASPMResult, errorModel, err := riskManagement.GetTopVulnerabilitiesByProjectID(projectID, scanID)
 	if err != nil {
 		return nil, errors.Wrapf(err, "%s", failedListingResults)
 	}
diff --git a/internal/wrappers/mock/risk-management-mock.go b/internal/wrappers/mock/risk-management-mock.go
@@ -6,14 +6,15 @@ import (
 
 type RiskManagementMockWrapper struct{}
 
-func (r *RiskManagementMockWrapper) GetTopVulnerabilitiesByProjectID(projectID string) (*wrappers.ASPMResult, *wrappers.WebError, error) {
+func (r *RiskManagementMockWrapper) GetTopVulnerabilitiesByProjectID(projectID string, scanID string) (*wrappers.ASPMResult, *wrappers.WebError, error) {
 	mockResults := []wrappers.RiskManagementResult{
-		{ID: "1", Name: "Vuln1", Severity: "High", Traits: map[string]string{wrappers.ExplPathKey: wrappers.ExplPathValue}},
+		{ID: "1", Name: "Vuln1", Severity: "High", Traits: map[string]string{wrappers.ExpPathKey: wrappers.ExpPathValue}},
 		{ID: "2", Name: "Vuln2", Severity: "Medium", Traits: map[string]string{wrappers.SuspMalwareKey: wrappers.SuspMalwareValue}},
 	}
 
 	mockASPMResult := &wrappers.ASPMResult{
 		ProjectID: projectID,
+		ScanID:    scanID,
 		Results:   mockResults,
 	}
 
diff --git a/internal/wrappers/risk-management-http.go b/internal/wrappers/risk-management-http.go
@@ -1,6 +1,7 @@
 package wrappers
 
 import (
+	"bytes"
 	"encoding/json"
 	"fmt"
 	"net/http"
@@ -20,14 +21,14 @@ func NewHTTPRiskManagementWrapper(path string) RiskManagementWrapper {
 	}
 }
 
-func (r *RiskManagementHTTPWrapper) GetTopVulnerabilitiesByProjectID(projectID string) (
-	*ASPMResult,
-	*WebError,
-	error,
-) {
+func (r *RiskManagementHTTPWrapper) GetTopVulnerabilitiesByProjectID(projectID string, scanID string) (*ASPMResult, *WebError, error) {
 	clientTimeout := viper.GetUint(commonParams.ClientTimeoutKey)
+
+	model := GetASPMResultRequest{ScanId: scanID}
+	jsonBytes, err := json.Marshal(model)
+
 	path := fmt.Sprintf(r.path, projectID)
-	resp, err := SendHTTPRequest(http.MethodGet, path, http.NoBody, true, clientTimeout)
+	resp, err := SendHTTPRequest(http.MethodGet, path, bytes.NewBuffer(jsonBytes), true, clientTimeout)
 	if err != nil {
 		return nil, nil, err
 	}
diff --git a/internal/wrappers/risk-management.go b/internal/wrappers/risk-management.go
@@ -4,18 +4,22 @@ import "time"
 
 const (
 	SuspMalwareKey = "suspMalware"
-	ExplPathKey    = "explPath"
-	PubExposedKey  = "pubExposed"
-	RuntimeKey     = "runtime"
+	ExpPathKey     = "explPath"
+	//PubExposedKey  = "pubExposed"
+	//RuntimeKey     = "runtime"
 
 	SuspMalwareValue = "Suspected Malware"
-	ExplPathValue    = "Exploitable Path"
-	PubExposedValue  = "Public Exposed"
-	RuntimeValue     = "Runtime"
+	ExpPathValue     = "Exploitable Path"
+	//PubExposedValue  = "Public Exposed"
+	//RuntimeValue     = "Runtime"
 )
 
 type RiskManagementWrapper interface {
-	GetTopVulnerabilitiesByProjectID(projectID string) (*ASPMResult, *WebError, error)
+	GetTopVulnerabilitiesByProjectID(projectID string, scanID string) (*ASPMResult, *WebError, error)
+}
+
+type GetASPMResultRequest struct {
+	ScanId string `json:"scanID"`
 }
 
 type ApplicationScore struct {

Original file line number	Diff line number	Diff line change
`@@ -234,13 +234,14 @@ func riskManagementSubCommand(riskManagement wrappers.RiskManagementWrapper, fea`
`234`	`234`	`Long: "The risk-management command displays risk management results for a specific project in Checkmarx One",`
`235`	`235`	`Example: heredoc.Doc(`
`236`	`236`	`
`237`		`- $ cx results risk-management --project-id <project Id> --limit <limit> (1-50, default: 50)`
	`237`	`+ $ cx results risk-management --project-id <project Id> --scan-id <scan ID> --limit <limit> (1-50, default: 50)`
`238`	`238`	`,
`239`	`239`	`),`
`240`	`240`	`RunE: runRiskManagementCommand(riskManagement, featureFlagsWrapper),`
`241`	`241`	`}`
`242`	`242`
`243`	`243`	`riskManagementCmd.PersistentFlags().String(commonParams.ProjectIDFlag, "", "Project ID")`
	`244`	`+ riskManagementCmd.PersistentFlags().String(commonParams.ScanIDFlag, "", "Scan ID")`
`244`	`245`	`riskManagementCmd.PersistentFlags().Int(commonParams.LimitFlag, -1, "Limit")`
`245`	`246`
`246`	`247`	`addFormatFlag(riskManagementCmd, printer.FormatJSON, printer.FormatTable, printer.FormatList)`
`@@ -355,14 +356,16 @@ func runRiskManagementCommand(riskManagement wrappers.RiskManagementWrapper, fea`
`355`	`356`	`) func(cmd *cobra.Command, args []string) error {`
`356`	`357`	`return func(cmd *cobra.Command, args []string) error {`
`357`	`358`	`projectID, _ := cmd.Flags().GetString(commonParams.ProjectIDFlag)`
	`359`	`+ scanID, _ := cmd.Flags().GetString(commonParams.ScanIDFlag)`
	`360`	`+`
`358`	`361`	`limit, _ := cmd.Flags().GetInt(commonParams.LimitFlag)`
`359`	`362`
`360`	`363`	`flagResponse, _ := wrappers.GetSpecificFeatureFlag(featureFlagsWrapper, wrappers.RiskManagementEnabled)`
`361`	`364`	`ASPMEnabled := flagResponse.Status`
`362`	`365`	`if !ASPMEnabled {`
`363`	`366`	`return errors.Errorf("%s", "Risk management results are currently unavailable for your tenant.")`
`364`	`367`	`}`
`365`		`- results, err := getRiskManagementResults(riskManagement, projectID)`
	`368`	`+ results, err := getRiskManagementResults(riskManagement, projectID, scanID)`
`366`	`369`	`if err != nil {`
`367`	`370`	`return err`
`368`	`371`	`}`
`@@ -372,8 +375,8 @@ func runRiskManagementCommand(riskManagement wrappers.RiskManagementWrapper, fea`
`372`	`375`	`}`
`373`	`376`	`}`
`374`	`377`
`375`		`-func getRiskManagementResults(riskManagement wrappers.RiskManagementWrapper, projectID string) (*wrappers.ASPMResult, error) {`
`376`		`- ASPMResult, errorModel, err := riskManagement.GetTopVulnerabilitiesByProjectID(projectID)`
	`378`	`+func getRiskManagementResults(riskManagement wrappers.RiskManagementWrapper, projectID, scanID string) (*wrappers.ASPMResult, error) {`
	`379`	`+ ASPMResult, errorModel, err := riskManagement.GetTopVulnerabilitiesByProjectID(projectID, scanID)`
`377`	`380`	`if err != nil {`
`378`	`381`	`return nil, errors.Wrapf(err, "%s", failedListingResults)`
`379`	`382`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,14 +6,15 @@ import (`
`6`	`6`
`7`	`7`	`type RiskManagementMockWrapper struct{}`
`8`	`8`
`9`		`-func (r RiskManagementMockWrapper) GetTopVulnerabilitiesByProjectID(projectID string) (wrappers.ASPMResult, *wrappers.WebError, error) {`
	`9`	`+func (r RiskManagementMockWrapper) GetTopVulnerabilitiesByProjectID(projectID string, scanID string) (wrappers.ASPMResult, *wrappers.WebError, error) {`
`10`	`10`	`mockResults := []wrappers.RiskManagementResult{`
`11`		`- {ID: "1", Name: "Vuln1", Severity: "High", Traits: map[string]string{wrappers.ExplPathKey: wrappers.ExplPathValue}},`
	`11`	`+ {ID: "1", Name: "Vuln1", Severity: "High", Traits: map[string]string{wrappers.ExpPathKey: wrappers.ExpPathValue}},`
`12`	`12`	`{ID: "2", Name: "Vuln2", Severity: "Medium", Traits: map[string]string{wrappers.SuspMalwareKey: wrappers.SuspMalwareValue}},`
`13`	`13`	`}`
`14`	`14`
`15`	`15`	`mockASPMResult := &wrappers.ASPMResult{`
`16`	`16`	`ProjectID: projectID,`
	`17`	`+ ScanID: scanID,`
`17`	`18`	`Results: mockResults,`
`18`	`19`	`}`
`19`	`20`