Merge pull request #154 from darkbitio/build

joshlarsen · web-flow · commit 0f102df4220f · 2022-03-14T21:35:56.000-04:00
Build
diff --git a/lib/aws_recon/collectors/ecr.rb b/lib/aws_recon/collectors/ecr.rb
@@ -23,6 +23,25 @@ def collect
         struct.policy = @client
                         .get_repository_policy({ repository_name: repo.repository_name }).policy_text.parse_policy
 
+        struct.images = []
+        #
+        # describe images
+        #
+        @client.list_images( {repository_name: repo.repository_name}).image_ids.each_with_index do | image, page |
+          log(response.context.operation_name, 'list_images', page)
+          image_hash = image.to_h
+          # 
+          # describe image scan results
+          #
+          result = @client.describe_image_scan_findings({ repository_name: repo.repository_name, image_id: { image_digest: image.image_digest, image_tag: image.image_tag } })
+          image_hash["image_scan_status"] = result.image_scan_status.to_h
+          image_hash["image_scan_findings"] = result.image_scan_findings.to_h
+
+          rescue Aws::ECR::Errors::ScanNotFoundException => e
+            # No scan result for this image. No action needed
+          ensure
+            struct.images << image_hash
+        end
       rescue Aws::ECR::Errors::ServiceError => e
         log_error(e.code)
 
@@ -40,7 +59,8 @@ def collect
   # not an error
   def suppressed_errors
     %w[
-      RepositoryPolicyNotFoundException
-    ]
+      RepositoryPolicyNotFoundException,
+      ScanNotFoundException
+      ]
   end
 end
diff --git a/lib/aws_recon/version.rb b/lib/aws_recon/version.rb
@@ -1,3 +1,3 @@
 module AwsRecon
-  VERSION = "0.5.25"
+  VERSION = "0.5.26"
 end
