feat(output): Add HTML outputs to Prowler #4005
Conversation
…3986) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>
github-actions
bot
added
documentation
github_actions
|
You can check the documentation for this PR here -> SaaS Documentation |
|
You can check the documentation for this PR here -> SaaS Documentation |
|
Great job!! Please change the screenshot in the docs index and solve the kubernetes summary tables. |
|
You can check the documentation for this PR here -> SaaS Documentation |
docs/tutorials/reporting.md
Outdated
| @@ -294,14 +294,16 @@ The following code is an example output of the [JSON-ASFF](https://docs.aws.amaz | |||
| ???+ note | |||
| Each finding is a `json` object within a list. | |||
|
|
|||
| ### HTML | |||
|
|
|||
| The following photo is an example of the HTML output: | |||
There was a problem hiding this comment.
| The following photo is an example of the HTML output: | |
| The following image is an example of the HTML output: |
prowler/__main__.py
Outdated
| if "html" in mode: | ||
| add_html_footer( | ||
| global_provider.output_options.output_filename, | ||
| args.output_directory, |
There was a problem hiding this comment.
| args.output_directory, | |
| global_provider.output_options.output_directory, |
There was a problem hiding this comment.
Please modify this too in line 269.
prowler/__main__.py
Outdated
| fill_html_overview_statistics( | ||
| stats, | ||
| global_provider.output_options.output_filename, | ||
| args.output_directory, |
There was a problem hiding this comment.
| args.output_directory, | |
| global_provider.output_options.output_directory, |
| @@ -146,8 +146,8 @@ def __init_outputs_parser__(self): | |||
| "-M", | |||
| nargs="+", | |||
| help="Output modes, by default csv and json-oscf are saved. When using AWS Security Hub integration, json-asff output is also saved.", | |||
| default=["csv", "json-ocsf"], | |||
| choices=["csv", "json-asff", "json-ocsf"], | |||
| default=["csv", "json-ocsf", "html"], | |||
There was a problem hiding this comment.
Please fix the tests related with this change.
| if not isinstance(finding, FindingOutput): | ||
| check_id = finding.check_metadata.CheckID | ||
| else: | ||
| check_id = finding.check_id |
There was a problem hiding this comment.
Why this change? The HTML should get this from the finding object.
prowler/lib/outputs/html/html.py
Outdated
| timestamp, | ||
| ) | ||
| from prowler.lib.logger import logger | ||
| from prowler.lib.outputs.compliance.compliance import get_check_compliance |
There was a problem hiding this comment.
This shouldn't be needed here, please get that information from the finding object.
prowler/lib/outputs/html/html.py
Outdated
| parameters = sys.argv[1:] | ||
| for index, parameter in enumerate(parameters): | ||
| if ( | ||
| parameter == "--kubeconfig-file" | ||
| and "/.kube/config" in parameters[index + 1] | ||
| ): | ||
| parameters[index + 1] = "~/.kube/config" |
There was a problem hiding this comment.
Why this? Please leave this function jus to fill the header, if you need to do some other changes pass do them in another place.
| # It is not pretty but useful | ||
| # AWS_provider --> aws | ||
| # GCP_provider --> gcp | ||
| # Azure_provider --> azure |
There was a problem hiding this comment.
I think we need to do it for K8s right?
There was a problem hiding this comment.
Forgot to update the comment but it's already done for Kubernetes
prowler/lib/outputs/outputs.py
Outdated
| fill_html( | ||
| file_descriptors["html"], finding_output, output_options | ||
| ) | ||
| file_descriptors["html"].write("") |
There was a problem hiding this comment.
When the report is written, first of all the html header is created and the method fill_html is called when creating the report.
There was a problem hiding this comment.
I know but I mean about file_descriptors["html"].write("")
|
You can check the documentation for this PR here -> SaaS Documentation |
1 similar comment
|
You can check the documentation for this PR here -> SaaS Documentation |
|
You can check the documentation for this PR here -> SaaS Documentation |
|
You can check the documentation for this PR here -> SaaS Documentation |
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## master #4005 +/- ##
==========================================
- Coverage 86.65% 86.23% -0.43%
==========================================
Files 777 777
Lines 24139 24292 +153
==========================================
+ Hits 20918 20947 +29
- Misses 3221 3345 +124 ☔ View full report in Codecov by Sentry. |
Description
HTML outputs are back for all the providers.
License
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.