Implement vulnerability rules support in the API

ziadhany · ziadhany · commit 5354a4102187 · 2026-03-11T16:07:12.000+02:00
Signed-off-by: ziad hany &lt;ziadhany2016@gmail.com&gt;
diff --git a/vulnerabilities/api_v2.py b/vulnerabilities/api_v2.py
@@ -31,6 +31,7 @@
 from vulnerabilities.models import AdvisoryWeakness
 from vulnerabilities.models import CodeFix
 from vulnerabilities.models import CodeFixV2
+from vulnerabilities.models import DetectionRule
 from vulnerabilities.models import ImpactedPackage
 from vulnerabilities.models import Package
 from vulnerabilities.models import PackageV2
@@ -1398,3 +1399,20 @@ def lookup(self, request):
 
         qs = self.get_queryset().for_purls([purl]).with_is_vulnerable()
         return Response(PackageV3Serializer(qs, many=True, context={"request": request}).data)
+
+
+class DetectionRuleSerializer(serializers.ModelSerializer):
+    advisory_avid = serializers.ReadOnlyField(source='advisory.avid')
+
+    class Meta:
+        model = DetectionRule
+        fields = ["id", "rule_type", "source_url", "rule_metadata", "rule_text", "advisory_avid"]
+
+
+class DetectionRuleViewSet(viewsets.ReadOnlyModelViewSet):
+    """
+    API endpoint that allows Detection Rules to be viewed or edited.
+    """
+
+    queryset = DetectionRule.objects.all()
+    serializer_class = DetectionRuleSerializer
diff --git a/vulnerabilities/pipelines/v2_improvers/sigma_rules.py b/vulnerabilities/pipelines/v2_improvers/sigma_rules.py
@@ -75,10 +75,10 @@ def collect_and_store_rules(self):
                 DetectionRule.objects.update_or_create(
                     rule_text=raw_text,
                     rule_type=DetectionRuleTypes.SIGMA,
-                    advisory=adv,
                     defaults={
                         "rule_metadata": rule_metadata,
                         "source_url": rule_url,
+                        "advisory": adv,
                     },
                 )
 
diff --git a/vulnerablecode/urls.py b/vulnerablecode/urls.py
@@ -22,6 +22,7 @@
 from vulnerabilities.api import VulnerabilityViewSet
 from vulnerabilities.api_v2 import CodeFixV2ViewSet
 from vulnerabilities.api_v2 import CodeFixViewSet
+from vulnerabilities.api_v2 import DetectionRuleViewSet
 from vulnerabilities.api_v2 import PackageV2ViewSet
 from vulnerabilities.api_v2 import PackageV3ViewSet
 from vulnerabilities.api_v2 import PipelineScheduleV2ViewSet
@@ -71,6 +72,8 @@ def __init__(self, *args, **kwargs):
 
 api_v3_router.register("packages", PackageV3ViewSet, basename="package-v3")
 
+api_v3_router.register("detection-rules", DetectionRuleViewSet, basename="detection-rule")
+
 urlpatterns = [
     path("admin/login/", AdminLoginView.as_view(), name="admin-login"),
     path("api/v2/", include(api_v2_router.urls)),
