Skip to content

feat: handle new endpoint to scan documents and create incidents for the found secrets #147

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 1, 2025
Merged

feat: handle new endpoint to scan documents and create incidents for the found secrets #147

merged 1 commit into from
Jul 1, 2025

Conversation

alina-tuholukova-gg
Copy link
Contributor

When source_uuid parameter is provided for the multiscan endpoint, the incidents will be
created for the found secrets

@alina-tuholukova-gg alina-tuholukova-gg requested a review from a team as a code owner June 4, 2025 12:37
@alina-tuholukova-gg alina-tuholukova-gg self-assigned this Jun 4, 2025
@codecov-commenter
Copy link

codecov-commenter commented Jun 4, 2025
edited
Loading

Codecov Report

Attention: Patch coverage is 83.33333% with 3 lines in your changes missing coverage. Please review.

Project coverage is 95.59%. Comparing base (be13fe7) to head (1453e09).
Report is 7 commits behind head on master.

Files with missing lines Patch % Lines
pygitguardian/client.py 82.35% 3 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##           master     #147      +/-   ##
==========================================
- Coverage   95.77%   95.59%   -0.19%     
==========================================
  Files           5        5              
  Lines        1208     1226      +18     
==========================================
+ Hits         1157     1172      +15     
- Misses         51       54       +3
Flag Coverage Δ
unittests 95.59% <83.33%> (-0.19%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@alina-tuholukova-gg alina-tuholukova-gg force-pushed the alina/add-source-id-parameter-for-multiscan branch from 89889f1 to 90b4d91 Compare June 4, 2025 12:54
@alina-tuholukova-gg alina-tuholukova-gg force-pushed the alina/add-source-id-parameter-for-multiscan branch 2 times, most recently from 02eb61e to ea1cd34 Compare June 4, 2025 12:58
agateau-gg
agateau-gg approved these changes Jun 5, 2025
View reviewed changes
Copy link
Collaborator

@agateau-gg agateau-gg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good, but I am curious about how one does obtain this source_uuid.

@alina-tuholukova-gg alina-tuholukova-gg force-pushed the alina/add-source-id-parameter-for-multiscan branch 2 times, most recently from 839ff83 to 0f89473 Compare June 23, 2025 16:15
@alina-tuholukova-gg
Copy link
Contributor Author

@agateau-gg I added new changes, we are finally using a new endpoint for issue creation, since we predict that the issue creation flow might change (new parameters specific only for issue creations etc). Could you please re-review the MR?

@alina-tuholukova-gg alina-tuholukova-gg force-pushed the alina/add-source-id-parameter-for-multiscan branch from 0f89473 to 8b80880 Compare June 25, 2025 14:07
agateau-gg
agateau-gg requested changes Jun 25, 2025
View reviewed changes
pygitguardian/client.py Outdated
Comment on lines 544 to 549
def scan_and_create_incidents(
self,
documents: List[Dict[str, str]],
source_uuid: UUID,
extra_headers: Optional[Dict[str, str]] = None,
params: Optional[Dict[str, Any]] = None,
) -> Union[Detail, MultiScanResult]:
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we need that params argument? I think it would be better to have properly typed optional arguments than a pass-through like this.

Also, can you mark optional arguments as keyword-only by adding a * before extra_headers so that we can safely reorder them if need be?

pygitguardian/models.py Outdated
Comment on lines 99 to 133
class DocumentsForIncidentCreationSchema(BaseSchema):
documents = fields.List(fields.Nested(DocumentSchema), required=True)
source_uuid = fields.UUID(required=True)

@post_dump
def transform_filename_to_document_identifier(
self, data: Dict[str, Any], **kwargs: Any
) -> Dict[str, Any]:
"""Transform filename field to document_identifier in the documents list"""
if "documents" in data:
for document in data["documents"]:
if "filename" in document:
document["document_identifier"] = document.pop("filename")
return data


class DocumentsForIncidentCreation(Base):
"""
DocumentsForIncidentCreation is a request object for communicating a list of documents
along with a source UUID to the API for incident creation

Attributes:
documents (List[Document]): list of documents to scan
source_uuid (UUID): UUID identifying the source
"""

SCHEMA = DocumentsForIncidentCreationSchema()

def __init__(self, documents: List[Document], source_uuid: UUID, **kwargs: Any):
super().__init__()
self.documents = documents
self.source_uuid = source_uuid

def __repr__(self) -> str:
return f"documents:{len(self.documents)}, source_uuid:{self.source_uuid}"
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we can avoid adding these classes: scan_and_create_incidents() can do something like this:

payload = {
    "source_uuid": source_uuid,
    "documents": [{
        "document_identifier": x["filename],
        "document": x["document"],
    } for x in documents]
}

@alina-tuholukova-gg alina-tuholukova-gg force-pushed the alina/add-source-id-parameter-for-multiscan branch from 8b80880 to 0705cdd Compare June 30, 2025 08:40
@alina-tuholukova-gg alina-tuholukova-gg changed the title feat: source_uuid to multiscan feat: handle new endpoint to scan documents and create incidents for the found secrets Jun 30, 2025
agateau-gg
agateau-gg requested changes Jun 30, 2025
View reviewed changes
Copy link
Collaborator

@agateau-gg agateau-gg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the changes. One tiny last request and this is good for me.

@alina-tuholukova-gg alina-tuholukova-gg force-pushed the alina/add-source-id-parameter-for-multiscan branch from 0705cdd to 1453e09 Compare July 1, 2025 09:36
agateau-gg
agateau-gg approved these changes Jul 1, 2025
View reviewed changes
Copy link
Collaborator

@agateau-gg agateau-gg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good 👍🏻.

@agateau-gg agateau-gg merged commit b1c4bef into master Jul 1, 2025
19 checks passed
@agateau-gg agateau-gg deleted the alina/add-source-id-parameter-for-multiscan branch July 1, 2025 10:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@agateau-gg agateau-gg agateau-gg approved these changes

Assignees

@alina-tuholukova-gg alina-tuholukova-gg

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@alina-tuholukova-gg @codecov-commenter @agateau-gg