New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add Slack security alerts for DataHub #128

Merged

tom-webber merged 10 commits into main from add-slack-security-alert-datahub

May 31, 2024

Contributor

tom-webber commented May 28, 2024 •

edited

Loading

add workflow that:

fetches DataHub security advisories via GitHub CLI
parses the response for any matching our version (since the last run of the workflow)
posts any matching advisories (or any advisories with unparsable vulnerable versions) to Slack
- add a warning at the top of the message if high or critical severity alerts contained in the message

add python script for parsing advisories json and outputting slack-formatted message, with tests


          add workflow to get datahub security advisories, parse for any matchi…

70fa033

…ng our version, then post to slack

add python script for parsing advisories json and outputting slack-formatted message

tom-webber temporarily deployed to dev

May 28, 2024 16:02

— with

GitHub Actions Inactive

murdo-moj reviewed

View reviewed changes

scripts/filter_advisories.py Outdated Show resolved Hide resolved

murdo-moj reviewed

View reviewed changes

.github/workflows/security-alerts.yml Outdated Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Outdated Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Outdated Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Outdated Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Outdated Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Show resolved Hide resolved


          Apply suggestions from code review

6eec6f3

Co-authored-by: Murdo <109604278+murdo-moj@users.noreply.github.com>

tom-webber linked an issue

that may be closed by this pull request

DevSecOps for DataHub and find-moj-data #32

Closed

tom-webber and others added 7 commits

May 30, 2024 11:51


          functionise vulnerability parsing logic and slack output formatting

Add tests for filtering, parsing and outputting functions
update .gitignore


          add python test workflow on changes to python scripts or python tests

d32e6c2


          fix pytest run

c004cae


          Merge branch 'main' into add-slack-security-alert-datahub

f99aec9


          rename job

77458e5


          add descriptor to slack output test

aaee38b


          update workflow triggers

82c72e3

MatMoore reviewed

View reviewed changes

tests/test_filter_advisories.py Outdated Show resolved Hide resolved

MatMoore reviewed

View reviewed changes

scripts/filter_advisories.py Outdated Show resolved Hide resolved

MatMoore previously approved these changes

View reviewed changes


          resolve code suggestions

8a3c0e6

rename `minimal_version` to `current_version`

tom-webber dismissed MatMoore’s stale review via

8a3c0e6

May 31, 2024 10:08

hjribeiro-moj approved these changes

View reviewed changes

Contributor

hjribeiro-moj left a comment

LGTM

tom-webber merged commit 2ec6f5a into main

2 of 3 checks passed

tom-webber deleted the add-slack-security-alert-datahub branch

May 31, 2024 10:16

tom-webber mentioned this pull request

DevSecOps for DataHub and find-moj-data #32

Closed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet