Feature/update results parameters (#11)

* Added feature to include results generation

Author: jay-nanduri

pom.xml

@@ -4,7 +4,7 @@
 
   <groupId>com.checkmarx.ast</groupId>
   <artifactId>ast-cli-java-wrapper</artifactId>
-  <version>1.0.8</version>
+  <version>1.0.9</version>
   <packaging>jar</packaging>
 
   <dependencies>

src/main/java/com/checkmarx/ast/CxException.java renamed to src/main/java/com/checkmarx/ast/exceptions/CxException.java

@@ -1,4 +1,4 @@
-package com.checkmarx.ast;
+package com.checkmarx.ast.exceptions;
 
 public class CxException extends RuntimeException{
     public CxException(String errorMessage) {

src/main/java/com/checkmarx/ast/ExecutionService.java renamed to src/main/java/com/checkmarx/ast/executionservice/ExecutionService.java

@@ -1,4 +1,4 @@
-package com.checkmarx.ast;
+package com.checkmarx.ast.executionservice;
 
 import java.io.IOException;
 import java.util.List;

src/main/java/com/checkmarx/ast/CxCommandOutput.java renamed to src/main/java/com/checkmarx/ast/results/CxCommandOutput.java

@@ -1,14 +1,15 @@
-package com.checkmarx.ast;
+package com.checkmarx.ast.results;
 
 
+import com.checkmarx.ast.scans.CxScan;
 import lombok.*;
 
 
 import java.util.List;
 
 @Getter
 @Setter
-public class CxCommandOutput {
+public class CxCommandOutput extends CxOutput{
     private int exitCode;
     private List<CxScan> scanObjectList;
 

src/main/java/com/checkmarx/ast/results/CxOutput.java

@@ -0,0 +1,6 @@
+
+package com.checkmarx.ast.results;
+
+public class CxOutput {
+    
+}

src/main/java/com/checkmarx/ast/results/CxResult.java

@@ -0,0 +1,76 @@
+package com.checkmarx.ast.results;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
+import lombok.Builder;
+import lombok.Data;
+import lombok.Value;
+import org.apache.commons.lang3.builder.EqualsBuilder;
+import org.apache.commons.lang3.builder.HashCodeBuilder;
+import org.apache.commons.lang3.builder.ReflectionToStringBuilder;
+
+@Data
+@Builder
+@Value
+@JsonDeserialize()
+@JsonInclude(JsonInclude.Include.NON_NULL)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class CxResult {
+
+	private String comments;
+
+	private String type;
+
+	private String id;
+
+	private String similarityID;
+
+	private String status;
+
+	private String state;
+
+	private String severity;
+
+	private String firstFoundAt;
+
+    private String foundAt;
+
+    private String firstScan;
+
+	@JsonCreator
+	public CxResult(@JsonProperty("comments") String comments, @JsonProperty("type") String type,
+			@JsonProperty("id") String id, @JsonProperty("similarityID") String similarityID,
+			@JsonProperty("status") String status, @JsonProperty("state") String state,
+			@JsonProperty("severity") String severity, @JsonProperty("firstFoundAt") String firstFoundAt, 
+            @JsonProperty("foundAt") String foundAt, @JsonProperty("firstScan") String firstScan ) {
+		this.comments = comments;
+		this.type = type;
+		this.id = id;
+		this.similarityID = similarityID;
+		this.status = status;
+		this.state = state;
+		this.severity = severity;
+		this.firstFoundAt = firstFoundAt;
+        this.foundAt = foundAt;
+        this.firstScan = firstScan;
+	}
+
+	@Override
+	public boolean equals(Object o) {
+		return EqualsBuilder.reflectionEquals(this, o);
+	}
+
+	@Override
+	public int hashCode() {
+		return HashCodeBuilder.reflectionHashCode(this);
+	}
+
+	@Override
+	public String toString() {
+		return ReflectionToStringBuilder.toString(this);
+	}
+
+}

src/main/java/com/checkmarx/ast/results/CxResultFormatType.java

@@ -0,0 +1,5 @@
+package com.checkmarx.ast.results;
+
+public enum CxResultFormatType {
+    JSON, LIST
+}

src/main/java/com/checkmarx/ast/results/CxResultOutput.java

@@ -0,0 +1,48 @@
+package com.checkmarx.ast.results;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
+import lombok.Builder;
+import lombok.Data;
+import lombok.Value;
+import org.apache.commons.lang3.builder.EqualsBuilder;
+import org.apache.commons.lang3.builder.HashCodeBuilder;
+import org.apache.commons.lang3.builder.ReflectionToStringBuilder;
+
+import java.util.List;
+
+@Data
+@Builder
+@Value
+@JsonDeserialize()
+@JsonInclude(JsonInclude.Include.NON_NULL)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class CxResultOutput {
+
+    private int totalCount;
+    private List<CxResult> results;
+
+    @JsonCreator
+	public CxResultOutput(@JsonProperty("totalCount") int totalCount, @JsonProperty("results") List<CxResult> results) {
+		this.totalCount = totalCount;
+		this.results = results;
+	}
+
+    @Override
+	public boolean equals(Object o) {
+		return EqualsBuilder.reflectionEquals(this, o);
+	}
+
+	@Override
+	public int hashCode() {
+		return HashCodeBuilder.reflectionHashCode(this);
+	}
+
+	@Override
+	public String toString() {
+		return ReflectionToStringBuilder.toString(this);
+	}
+}

src/main/java/com/checkmarx/ast/results/CxResultType.java

@@ -0,0 +1,5 @@
+package com.checkmarx.ast.results;
+
+public enum CxResultType {
+    LIST, SUMMARY
+}

src/main/java/com/checkmarx/ast/CxAuth.java renamed to src/main/java/com/checkmarx/ast/scans/CxAuth.java

@@ -1,15 +1,17 @@
-package com.checkmarx.ast;
+package com.checkmarx.ast.scans;
 
+import com.checkmarx.ast.exceptions.CxException;
+import com.checkmarx.ast.executionservice.ExecutionService;
+import com.checkmarx.ast.results.CxCommandOutput;
+import com.fasterxml.jackson.core.JsonParser;
 import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.core.type.TypeReference;
 import com.fasterxml.jackson.databind.ObjectMapper;
-import com.google.gson.Gson;
 import org.apache.commons.lang3.StringUtils;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 import java.io.*;
-import java.lang.reflect.Type;
 import java.net.URI;
 import java.net.URISyntaxException;
 import java.net.URL;
@@ -32,11 +34,10 @@ public class CxAuth {
     private final String secret;
     private final String apikey;
     private final URI executable;
-    private static final Gson gson = new Gson();
 
-    public CxAuth(CxScanConfig scanConfig, Logger log)
-            throws IOException, URISyntaxException, CxException {
-        if (scanConfig == null) throw new CxException("CxScanConfig object returned as null!");
+    public CxAuth(CxScanConfig scanConfig, Logger log) throws IOException, URISyntaxException, CxException {
+        if (scanConfig == null)
+            throw new CxException("CxScanConfig object returned as null!");
 
         this.baseuri = scanConfig.getBaseUri();
         this.baseAuthUri = scanConfig.getBaseAuthUri();
@@ -101,7 +102,7 @@ private URI getFile(URI jarLocation, final String fileName) throws IOException {
 
             try {
                 fileURI = extract(zipFile, fileName);
-                log.info("Location of the jar file: {}",fileURI) ;
+                log.info("Location of the jar file: {}", fileURI);
             } finally {
                 zipFile.close();
             }
@@ -157,7 +158,7 @@ private static void close(final Closeable stream) {
     }
 
     public CxCommandOutput cxScanShow(String id) throws IOException, InterruptedException {
-        log.info("Initialized scan retrieval for id: {}" , id);
+        log.info("Initialized scan retrieval for id: {}", id);
         List<String> commands = initialCommands();
         commands.add("scan");
         commands.add("show");
@@ -172,19 +173,76 @@ public CxCommandOutput cxScanShow(String id) throws IOException, InterruptedExce
         return scanObject;
     }
 
+    public String cxGetResultsSummary(String scanID, String formatType, String target)
+            throws IOException {
+        List<String> commands = initialCommandsCommon();
+        commands.add("result");
+        commands.add("summary");
+        if (scanID.isEmpty()) {
+            throw new CxException("Please provide the scan id ");
+        }
+        commands.add("--scan-id");
+        commands.add(scanID);
+        if (!formatType.isEmpty()) {
+            commands.add("--format");
+            commands.add(formatType);
+        }
+        if (!target.isEmpty()) {
+            commands.add("--target");
+            commands.add(target);
+        }
+        return runResultExecutionCommands(commands);
+    }
+
+    public String cxGetResultsList(String scanID, String formatType)
+            throws IOException {
+        List<String> commands = initialCommandsCommon();
+        commands.add("result");
+        commands.add("list");
+        if (scanID.isEmpty()) {
+            throw new CxException("Please provide the scan id ");
+        }
+        commands.add("--scan-id");
+        commands.add(scanID);
+        if (!formatType.isEmpty()) {
+            commands.add("--format");
+            commands.add(formatType);
+        }
+    
+        return runResultExecutionCommands(commands);
+    }
+
+    private String runResultExecutionCommands(List<String> commands) throws IOException {
+        log.info("Process submitting to the executor");
+        ExecutionService exec = new ExecutionService();
+        Process process = exec.executeCommand(commands);
+        BufferedReader reader = new BufferedReader(new InputStreamReader(process.getInputStream()));
+        StringBuilder builder = new StringBuilder();
+        String line = null;
+        while ((line = reader.readLine()) != null) {
+            builder.append(line);
+            builder.append(System.getProperty("line.separator"));
+        }
+        if(!process.isAlive() && process.exitValue()!= 0) {
+            log.info("Exit code from CLI is: {} ", process.exitValue());
+            return "";
+        }
+        return builder.toString();
+    }
+
     private CxCommandOutput runExecutionCommands(List<String> commands) throws IOException, InterruptedException {
         log.info("Process submitting to the executor");
         ExecutionService exec = new ExecutionService();
         Process process = exec.executeCommand(commands);
         String line;
         CxScan scanObject = null;
         InputStream is = process.getInputStream();
-		InputStreamReader isr = new InputStreamReader(is);
-		BufferedReader br = new BufferedReader(isr);
-		CxCommandOutput cxCommandOutput = new CxCommandOutput();
+        InputStreamReader isr = new InputStreamReader(is);
+        BufferedReader br = new BufferedReader(isr);
+        CxCommandOutput cxCommandOutput = new CxCommandOutput();
         while ((line = br.readLine()) != null) {
             log.info(line);
-            if (!StringUtils.isBlank(line) && isJSONValid(line, CxScan.class)) {
+            if (!StringUtils.isBlank(line) && isValidJSON(line)) {
                 scanObject = transformToCxScanObject(line);
                 List<CxScan> scanList = new ArrayList<>();
                 scanList.add(scanObject);
@@ -193,8 +251,7 @@ private CxCommandOutput runExecutionCommands(List<String> commands) throws IOExc
         }
         br.close();
         process.waitFor();
-
-        if(!process.isAlive()) {
+        if (!process.isAlive()) {
             cxCommandOutput.setExitCode(process.exitValue());
             log.info("Exit code from AST-CLI: {}", process.exitValue());
         }
@@ -259,7 +316,6 @@ public CxCommandOutput cxAstScanList() throws IOException, InterruptedException
         List<String> commands = initialCommands();
         commands.add("scan");
         commands.add("list");
-
         ExecutionService exec = new ExecutionService();
         Process process = exec.executeCommand(commands);
         String line;
@@ -268,7 +324,7 @@ public CxCommandOutput cxAstScanList() throws IOException, InterruptedException
         InputStreamReader isr = new InputStreamReader(is);
         BufferedReader br = new BufferedReader(isr);
         while ((line = br.readLine()) != null) {
-            if (isJSONValid(line, List.class) && !line.isEmpty())
+            if (isValidJSON(line) && !line.isEmpty())
                 list = transformToCxScanList(line);
         }
         br.close();
@@ -278,7 +334,7 @@ public CxCommandOutput cxAstScanList() throws IOException, InterruptedException
         cxCommandOutput.setScanObjectList(list);
         cxCommandOutput.setExitCode(process.exitValue());
         if (list != null && !list.isEmpty())
-            log.info("Retrieved scan list with size: {}" , list.size());
+            log.info("Retrieved scan list with size: {}", list.size());
         else
             log.info("Not able to retrieve scan list");
 
@@ -316,8 +372,6 @@ public CxCommandOutput cxScanCreate(Map<CxParamType, String> params) throws IOEx
         return runExecutionCommands(commands);
     }
 
-
-
     private void addIndividualParams(List<String> commands, String value) {
         Matcher m = Pattern.compile("([^\"]\\S*|\".+?\")\\s*").matcher(value);
         while (m.find())
@@ -351,13 +405,17 @@ private List<CxScan> transformToCxScanList(String line) throws IOException {
 
     }
 
-    private boolean isJSONValid(String jsonInString, Object object) {
+    public boolean isValidJSON(final String json) {
+        boolean valid = false;
         try {
-            gson.fromJson(jsonInString, (Type) object);
-            return true;
-        } catch (com.google.gson.JsonSyntaxException ex) {
-            return false;
+            final JsonParser parser = new ObjectMapper().createParser(json);
+            while (parser.nextToken() != null) {
+            }
+            valid = true;
+        } catch (IOException ignored) {
         }
+        ;
+        return valid;
     }
 
 }

src/main/java/com/checkmarx/ast/CxParamType.java renamed to src/main/java/com/checkmarx/ast/scans/CxParamType.java

@@ -1,4 +1,4 @@
-package com.checkmarx.ast;
+package com.checkmarx.ast.scans;
 
 public enum CxParamType {
     S, V, G, PROJECT_NAME, SCAN_TYPES, SAST_PRESET_NAME, FILTER, DIRECTORY, ADDITIONAL_PARAMETERS, AGENT, SOURCES, BRANCH

src/main/java/com/checkmarx/ast/CxScan.java renamed to src/main/java/com/checkmarx/ast/scans/CxScan.java

@@ -1,4 +1,4 @@
-package com.checkmarx.ast;
+package com.checkmarx.ast.scans;
 
 import com.fasterxml.jackson.annotation.JsonCreator;
 import com.fasterxml.jackson.annotation.JsonIgnoreProperties;