improvements

OsamaMahmood · OsamaMahmood · commit 30ec0e2e8e3d · 2025-05-14T17:00:45.000+04:00
diff --git a/dojo/tools/wizcli_dir/parser.py b/dojo/tools/wizcli_dir/parser.py
@@ -1,37 +1,66 @@
 import json
+import logging
 
 from dojo.tools.wizcli_common_parsers.parsers import WizcliParsers
 
+logger = logging.getLogger(__name__)
+
 
 class WizcliDirParser:
-    """
-    Wizcli Dir Scan results in JSON file format.
-    """
+
+    """Wiz CLI Directory/IaC Scan results in JSON file format."""
 
     def get_scan_types(self):
         return ["Wizcli Dir Scan"]
 
     def get_label_for_scan_types(self, scan_type):
-        return "Wizcli Dir Scan"
+        return "Wiz CLI Scan (Directory)"
 
     def get_description_for_scan_types(self, scan_type):
-        return "Wizcli Dir Scan results in JSON file format."
+        return "Parses Wiz CLI Directory/IaC scan results in JSON format, creating granular findings for vulnerabilities and secrets."
 
-    def get_findings(self, filename, test):
-        scan_data = filename.read()
+    def get_findings(self, file, test):
+        """Processes the JSON report and returns a list of DefectDojo Finding objects."""
         try:
-            data = json.loads(scan_data.decode("utf-8"))
-        except Exception:
+            scan_data = file.read()
+            if isinstance(scan_data, bytes):
+                # Try decoding common encodings
+                try:
+                    scan_data = scan_data.decode("utf-8-sig")  # Handles BOM
+                except UnicodeDecodeError:
+                    scan_data = scan_data.decode("utf-8")  # Fallback
             data = json.loads(scan_data)
+        except json.JSONDecodeError as e:
+            msg = f"Invalid JSON format: {e}"
+            logger.error(msg)
+            raise ValueError(msg) from e
+        except Exception as e:
+            msg = f"Error processing report file: {e}"
+            logger.error(msg)
+            raise ValueError(msg) from e
+
         findings = []
-        results = data.get("result", {})
+        results_data = data.get("result", {})
+
+        if not results_data:
+            logger.warning("No 'result' key found in the Wiz report. Unable to parse findings.")
+            return findings
 
-        libraries = results.get("libraries", None)
+        # Parse Libraries (Vulnerabilities)
+        libraries = results_data.get("libraries")
         if libraries:
+            logger.debug(f"Parsing {len(libraries)} library entries.")
             findings.extend(WizcliParsers.parse_libraries(libraries, test))
+        else:
+            logger.debug("No 'libraries' data found in results.")
 
-        secrets = results.get("secrets", None)
+        # Parse Secrets
+        secrets = results_data.get("secrets")
         if secrets:
+            logger.debug(f"Parsing {len(secrets)} secret entries.")
             findings.extend(WizcliParsers.parse_secrets(secrets, test))
+        else:
+            logger.debug("No 'secrets' data found in results.")
 
+        logger.info(f"WizcliDirParser processed {len(findings)} findings.")
         return findings
diff --git a/dojo/tools/wizcli_iac/parser.py b/dojo/tools/wizcli_iac/parser.py
@@ -1,37 +1,64 @@
 import json
+import logging
 
-from dojo.tools.wizcli_common_parsers.parsers import WizcliParsers
+from dojo.tools.wizcli_common_parsers.parsers import WizcliParsers  # Adjust import path
 
+logger = logging.getLogger(__name__)
 
-class WizcliIaCParser:
-    """
-    Wizcli IaC Scan results in JSON file format.
-    """
+
+class WizcliIacParser:
+
+    """Wiz CLI IaC Scan results in JSON file format."""
 
     def get_scan_types(self):
         return ["Wizcli IaC Scan"]
 
     def get_label_for_scan_types(self, scan_type):
-        return "Wizcli IaC Scan"
+        return "Wiz CLI Scan (IaC)"
 
     def get_description_for_scan_types(self, scan_type):
-        return "Wizcli IaC Scan results in JSON file format."
+        return "Parses Wiz CLI Infrastructure as Code (IaC) scan results in JSON format."
 
-    def get_findings(self, filename, test):
-        scan_data = filename.read()
+    def get_findings(self, file, test):
         try:
-            data = json.loads(scan_data.decode("utf-8"))
-        except Exception:
+            scan_data = file.read()
+            if isinstance(scan_data, bytes):
+                try:
+                    scan_data = scan_data.decode("utf-8-sig")
+                except UnicodeDecodeError:
+                    scan_data = scan_data.decode("utf-8")
             data = json.loads(scan_data)
+        except json.JSONDecodeError as e:
+            msg = f"Invalid JSON format: {e}"
+            logger.error(msg)
+            raise ValueError(msg) from e
+        except Exception as e:
+            msg = f"Error processing report file: {e}"
+            logger.error(msg)
+            raise ValueError(msg) from e
+
         findings = []
-        results = data.get("result", {})
+        results_data = data.get("result", {})
+
+        if not results_data:
+            logger.warning("No 'result' key found in the Wiz report.")
+            return findings
 
-        rule_matches = results.get("ruleMatches", None)
+        # Parse Rule Matches (IaC findings)
+        rule_matches = results_data.get("ruleMatches")
         if rule_matches:
+            logger.debug(f"Parsing {len(rule_matches)} rule match entries.")
             findings.extend(WizcliParsers.parse_rule_matches(rule_matches, test))
+        else:
+            logger.debug("No 'ruleMatches' data found in results.")
 
-        secrets = results.get("secrets", None)
+        # Parse Secrets (if present in IaC scans)
+        secrets = results_data.get("secrets")
         if secrets:
+            logger.debug(f"Parsing {len(secrets)} secret entries.")
             findings.extend(WizcliParsers.parse_secrets(secrets, test))
+        else:
+            logger.debug("No 'secrets' data found in results.")
 
+        logger.info(f"WizcliIacParser processed {len(findings)} findings.")
         return findings
diff --git a/dojo/tools/wizcli_img/parser.py b/dojo/tools/wizcli_img/parser.py
@@ -1,41 +1,73 @@
 import json
+import logging
 
-from dojo.tools.wizcli_common_parsers.parsers import WizcliParsers
+from dojo.tools.wizcli_common_parsers.parsers import WizcliParsers  # Adjust import path
+
+logger = logging.getLogger(__name__)
 
 
 class WizcliImgParser:
-    """
-    Wizcli Image Scan results in JSON file format.
-    """
+
+    """Wiz CLI Container Image Scan results in JSON file format."""
 
     def get_scan_types(self):
+        # Use a distinct name for image scans
         return ["Wizcli Img Scan"]
 
     def get_label_for_scan_types(self, scan_type):
-        return "Wizcli Img Scan"
+        return "Wiz CLI Scan (Image)"
 
     def get_description_for_scan_types(self, scan_type):
-        return "Wizcli Img report file can be imported in JSON format."
+        return "Parses Wiz CLI Container Image scan results in JSON format."
 
-    def get_findings(self, filename, test):
-        scan_data = filename.read()
+    def get_findings(self, file, test):
         try:
-            data = json.loads(scan_data.decode("utf-8"))
-        except Exception:
+            scan_data = file.read()
+            if isinstance(scan_data, bytes):
+                try:
+                    scan_data = scan_data.decode("utf-8-sig")
+                except UnicodeDecodeError:
+                    scan_data = scan_data.decode("utf-8")
             data = json.loads(scan_data)
+        except json.JSONDecodeError as e:
+            msg = f"Invalid JSON format: {e}"
+            logger.error(msg)
+            raise ValueError(msg) from e
+        except Exception as e:
+            msg = f"Error processing report file: {e}"
+            logger.error(msg)
+            raise ValueError(msg) from e
+
         findings = []
-        results = data.get("result", {})
+        results_data = data.get("result", {})
+
+        if not results_data:
+            logger.warning("No 'result' key found in the Wiz report.")
+            return findings
 
-        osPackages = results.get("osPackages", None)
-        if osPackages:
-            findings.extend(WizcliParsers.parse_os_packages(osPackages, test))
+        # Parse OS Packages - Key difference for image scans
+        os_packages = results_data.get("osPackages")
+        if os_packages:
+            logger.debug(f"Parsing {len(os_packages)} OS package entries.")
+            findings.extend(WizcliParsers.parse_os_packages(os_packages, test))
+        else:
+            logger.debug("No 'osPackages' data found in results.")
 
-        libraries = results.get("libraries", None)
+        # Parse Libraries (if present in image scans)
+        libraries = results_data.get("libraries")
         if libraries:
+            logger.debug(f"Parsing {len(libraries)} library entries.")
             findings.extend(WizcliParsers.parse_libraries(libraries, test))
+        else:
+            logger.debug("No 'libraries' data found in results.")
 
-        secrets = results.get("secrets", None)
+        # Parse Secrets (if present in image scans)
+        secrets = results_data.get("secrets")
         if secrets:
+            logger.debug(f"Parsing {len(secrets)} secret entries.")
             findings.extend(WizcliParsers.parse_secrets(secrets, test))
+        else:
+            logger.debug("No 'secrets' data found in results.")
 
+        logger.info(f"WizcliImgParser processed {len(findings)} findings.")
         return findings
