mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 239 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
35504 Commits
60 Branches
Tree: 8ec3ffdc75
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8ec3ffdc75'
${ noResults }
sonarqube/server/sonar-web/scripts/update-cwes.js

update-cwes.js 3.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2023 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. /* eslint-disable no-console */

  21. 

  22. /**

  23.  * Execute this script by passing the path to the CWE XML definition file.

  24.  *

  25.  * You can download the full CWE database in XML format here: https://cwe.mitre.org/data/downloads.html

  26.  * Make sure to unzip the downloaded file first before passing it to this script.

  27.  *

  28.  * Usage:

  29.  *     node scripts/update-cwes.js PATH

  30.  *   or:

  31.  *     yarn update-cwes PATH

  32.  *

  33.  * Example:

  34.  *     node scripts/update-cwes.js ~/Downloads/cwec_v4.6.xml

  35.  *   or:

  36.  *     yarn update-cwes ~/Downloads/cwec_v4.6.xml

  37.  */

  38. 

  39. const fs = require('fs');

  40. const chalk = require('chalk');

  41. const jsdom = require('jsdom');

  42. const { trim } = require('lodash');

  43. const path = require('path');

  44. 

  45. const STANDARDS_JSON_FILE = path.join(

  46.   __dirname,

  47.   '..',

  48.   'src',

  49.   'main',

  50.   'js',

  51.   'helpers',

  52.   'standards.json'

  53. );

  54. 

  55. const xmlContent = readXMLContent(process.argv[2]);

  56. const newCWEs = getCWEs(xmlContent);

  57. writeToStandardsJson(newCWEs);

  58. 

  59. function readXMLContent(xmlPath) {

  60.   if (fs.existsSync(xmlPath)) {

  61.     try {

  62.       fs.accessSync(xmlPath, fs.constants.R_OK);

  63.       return fs.readFileSync(xmlPath).toString();

  64.     } catch (e) {

  65.       console.error(chalk.red(`No read access for XML file '${xmlPath}'`));

  66.       throw e;

  67.     }

  68.   } else {

  69.     console.error(chalk.red(`Cannot find XML file '${xmlPath}'`));

  70.     throw Error('');

  71.   }

  72. }

  73. 

  74. function getCWEs(xml) {

  75.   const document = new jsdom.JSDOM(xml);

  76.   const weaknesses = document.window.document.querySelectorAll('Weaknesses Weakness');

  77.   const cwes = {

  78.     unknown: {

  79.       title: 'No CWE associated'

  80.     }

  81.   };

  82. 

  83.   weaknesses.forEach(weakness => {

  84.     const id = weakness.getAttribute('ID');

  85.     const title = weakness.getAttribute('Name');

  86.     let description = '';

  87. 

  88.     if (!id) {

  89.       return;

  90.     }

  91. 

  92.     if (!title) {

  93.       console.log(chalk.yellow(`No Name attribute found for CWE '${id}'. Skipping.`));

  94.       return;

  95.     }

  96. 

  97.     const descriptionEl = weakness.querySelector('Description');

  98.     if (descriptionEl) {

  99.       description = trim(descriptionEl.textContent);

  100.     }

  101. 

  102.     cwes[id] = { title, description };

  103.   });

  104. 

  105.   return cwes;

  106. }

  107. 

  108. function writeToStandardsJson(cwes) {

  109.   try {

  110.     fs.accessSync(STANDARDS_JSON_FILE, fs.constants.W_OK);

  111.   } catch (e) {

  112.     console.error(chalk.red(`No write access for standards.json ('${STANDARDS_JSON_FILE}') file`));

  113.     throw e;

  114.   }

  115. 

  116.   try {

  117.     const json = JSON.parse(fs.readFileSync(STANDARDS_JSON_FILE).toString());

  118.     json.cwe = cwes;

  119.     fs.writeFileSync(STANDARDS_JSON_FILE, JSON.stringify(json, undefined, 2));

  120.   } catch (e) {

  121.     console.error(

  122.       chalk.red(`Failed to write data to standards.json ('${STANDARDS_JSON_FILE}') file`)

  123.     );

  124.     throw e;

  125.   }

  126. }