mirror of
https://github.com/crowdsecurity/crowdsec.git
synced 2025-05-12 04:45:52 +02:00
89aec7cf6b
* pkg/cwhub: simpler accessor methods - prefer higher level GetItemsByType, GetInstalledByType over GetItemMap - always send both appsec-rules and scenarios to api - explicit parameter for (case insensitive) sorted list of items - shorter code - assume itemType parameter makes sense, don't error * lint (gofumpt)
47 lines
1.2 KiB
Go
47 lines
1.2 KiB
Go
package appsec
|
|
|
|
import (
|
|
"os"
|
|
|
|
log "github.com/sirupsen/logrus"
|
|
"gopkg.in/yaml.v2"
|
|
|
|
"github.com/crowdsecurity/crowdsec/pkg/cwhub"
|
|
)
|
|
|
|
var appsecRules = make(map[string]AppsecCollectionConfig) // FIXME: would probably be better to have a struct for this
|
|
|
|
var hub *cwhub.Hub // FIXME: this is a temporary hack to make the hub available in the package
|
|
|
|
func LoadAppsecRules(hubInstance *cwhub.Hub) error {
|
|
hub = hubInstance
|
|
appsecRules = make(map[string]AppsecCollectionConfig)
|
|
|
|
for _, hubAppsecRuleItem := range hub.GetInstalledByType(cwhub.APPSEC_RULES, false) {
|
|
content, err := os.ReadFile(hubAppsecRuleItem.State.LocalPath)
|
|
if err != nil {
|
|
log.Warnf("unable to read file %s : %s", hubAppsecRuleItem.State.LocalPath, err)
|
|
continue
|
|
}
|
|
|
|
var rule AppsecCollectionConfig
|
|
|
|
err = yaml.UnmarshalStrict(content, &rule)
|
|
if err != nil {
|
|
log.Warnf("unable to unmarshal file %s : %s", hubAppsecRuleItem.State.LocalPath, err)
|
|
continue
|
|
}
|
|
|
|
rule.hash = hubAppsecRuleItem.State.LocalHash
|
|
rule.version = hubAppsecRuleItem.Version
|
|
|
|
log.Infof("Adding %s to appsec rules", rule.Name)
|
|
|
|
appsecRules[rule.Name] = rule
|
|
}
|
|
|
|
if len(appsecRules) == 0 {
|
|
log.Debugf("No appsec rules found")
|
|
}
|
|
return nil
|
|
}
|