Merge pull request #31 from LuccaSA/refactor

mpgn · web-flow · commit f7043e64a20c · 2025-08-25T18:23:11.000+02:00
add new option
diff --git a/.env.example b/.env.example
@@ -25,6 +25,9 @@ PRINT_CURRENT_RESULT=1
 # Set to 1 to enable ANSSI maturity level display, 0 to disable
 ANSSI_LVL=0
 
+# Notify when no changes
+NOTIFY_WHEN_NO_CHANGES=1
+
 # Domain Configuration
 # If not set, will use $env:USERDNSDOMAIN
 DOMAIN=
diff --git a/Initial-deploy.ps1 b/Initial-deploy.ps1
@@ -404,6 +404,7 @@ Function Show-FinalInstructions {
     Write-Host "Additional configuration options in .env:" -ForegroundColor Cyan
     Write-Host "  • PRINT_CURRENT_RESULT: Set to 1 to include all flagged rules in notifications" -ForegroundColor White
     Write-Host "  • ANSSI_LVL: Set to 1 to enable ANSSI compliance level reporting" -ForegroundColor White
+    Write-Host "  • NOTIFY_WHEN_NO_CHANGES: Set to 1 to enable a report even if nothing change between two scan" -ForegroundColor White
     Write-Host ""
     
     Write-Host "Next steps:" -ForegroundColor Green
diff --git a/PingCastle-Notify.ps1 b/PingCastle-Notify.ps1
@@ -23,6 +23,7 @@
         - add -noscan option to skip PingCastle scan
         - add -full_report option to force full report
         - add anssi rules link
+        - add notify when no changes option
     date: 08/08/2025
     version: 2.0
 #>
@@ -189,6 +190,7 @@ $domainSuffix = if ($envVars["DOMAIN"] ) { $envVars["DOMAIN"] } else {
     ($env:USERDNSDOMAIN).ToLower() 
 }
 $anssi_lvl_enabled = if ($envVars["ANSSI_LVL"]) { [int]$envVars["ANSSI_LVL"] } else { 0 }
+$notify_when_no_changes = if ($envVars["NOTIFY_WHEN_NO_CHANGES"]) { [int]$envVars["NOTIFY_WHEN_NO_CHANGES"] } else { 0 }
 
 #region Variable
 $ApplicationName = 'PingCastle'
@@ -701,10 +703,10 @@ if (-not ($old_report.FullName)) {
     # write message regarding previous score
     if ([int]$previous_score -eq [int]$total_point -and (IsEqual $StaleObjects_old $StaleObjects) -and (IsEqual $PrivilegedAccounts_old $PrivilegedAccounts) -and (IsEqual $Anomalies_old $Anomalies) -and (IsEqual $Trusts_old $Trusts)) {
         if ($addedVuln -or $removedVuln -or $warningVuln) {
-            $sentNotification = $True
+            $sentNotification = $true
             $connectorBodies = Update-ConnectorsStatus $connectorBodies "There is no new vulnerability yet some rules have changed !"
         } else {
-            $sentNotification = $False
+            $sentNotification = if ($notify_when_no_changes -eq 1) { $true } else { $false }
             $connectorBodies = Update-ConnectorsStatus $connectorBodies "There is no new vulnerability ! :tada:"
         }
     } elseIf  ([int]$previous_score -lt [int]$total_point) {
