Merge branch 'feature/agentic_ai' of https://github.com/CheckmarxDev/ast-cli-java-wrapper into feature/agentic_ai

# Conflicts:
#	src/main/java/com/checkmarx/ast/wrapper/CxConstants.java
#	src/main/java/com/checkmarx/ast/wrapper/CxWrapper.java
#	src/test/java/com/checkmarx/ast/SecretsRealtimeResultsTest.java

Author: cx-anjali-deore

.github/workflows/release.yml

@@ -140,7 +140,7 @@ jobs:
       release_version: ${{ needs.release.outputs.TAG_NAME }}
       cli_release_version: ${{ needs.release.outputs.CLI_VERSION }}
       release_author: "Sypher Team"
-      release_url: https://github.com/CheckmarxDev/ast-cli-java-wrapper/releases/tag/${{ needs.release.outputs.TAG_NAME }}
+      release_url: https://github.com/Checkmarx/ast-cli-java-wrapper/releases/tag/${{ needs.release.outputs.TAG_NAME }}
       jira_product_name: JAVA_WRAPPER
     secrets: inherit
 

checkmarx-ast-cli.version

@@ -1 +1 @@
-2.3.36
+2.3.40

src/main/java/com/checkmarx/ast/mask/MaskResult.java

@@ -0,0 +1,37 @@
+package com.checkmarx.ast.mask;
+
+import com.checkmarx.ast.utils.JsonParser;
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
+import com.fasterxml.jackson.databind.type.TypeFactory;
+import lombok.EqualsAndHashCode;
+import lombok.ToString;
+import lombok.Value;
+
+import java.util.List;
+
+@Value
+@EqualsAndHashCode()
+@JsonDeserialize()
+@ToString(callSuper = true)
+@JsonInclude(JsonInclude.Include.NON_NULL)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class MaskResult {
+
+    List<MaskedSecret> maskedSecrets;
+    String maskedFile;
+
+    @JsonCreator
+    public MaskResult(@JsonProperty("maskedSecrets") List<MaskedSecret> maskedSecrets,
+                     @JsonProperty("maskedFile") String maskedFile) {
+        this.maskedSecrets = maskedSecrets;
+        this.maskedFile = maskedFile;
+    }
+
+    public static MaskResult fromLine(String line) {
+        return JsonParser.parse(line, TypeFactory.defaultInstance().constructType(MaskResult.class));
+    }
+}

src/main/java/com/checkmarx/ast/mask/MaskedSecret.java

@@ -0,0 +1,32 @@
+package com.checkmarx.ast.mask;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
+import lombok.EqualsAndHashCode;
+import lombok.ToString;
+import lombok.Value;
+
+@Value
+@EqualsAndHashCode()
+@JsonDeserialize()
+@ToString(callSuper = true)
+@JsonInclude(JsonInclude.Include.NON_NULL)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class MaskedSecret {
+
+    String masked;
+    String secret;
+    int line;
+
+    @JsonCreator
+    public MaskedSecret(@JsonProperty("masked") String masked,
+                       @JsonProperty("secret") String secret,
+                       @JsonProperty("line") int line) {
+        this.masked = masked;
+        this.secret = secret;
+        this.line = line;
+    }
+}

src/main/java/com/checkmarx/ast/wrapper/CxConstants.java

@@ -80,4 +80,6 @@ public final class CxConstants {
     static final String SUB_CMD_IAC_REALTIME = "iac-realtime";
     static final String SUB_CMD_SECRETS_REALTIME = "secrets-realtime";
     static final String SUB_CMD_CONTAINERS_REALTIME = "containers-realtime";
+    static final String SUB_CMD_MASK = "mask";
+    static final String RESULT_FILE = "--result-file";
 }

src/main/java/com/checkmarx/ast/wrapper/CxWrapper.java

@@ -4,8 +4,10 @@
 import com.checkmarx.ast.codebashing.CodeBashing;
 import com.checkmarx.ast.kicsRealtimeResults.KicsRealtimeResults;
 import com.checkmarx.ast.learnMore.LearnMore;
+import com.checkmarx.ast.mask.MaskResult;
 import com.checkmarx.ast.ossrealtime.OssRealtimeResults;
 import com.checkmarx.ast.secretsrealtime.SecretsRealtimeResults;
+
 import com.checkmarx.ast.iacrealtime.IacRealtimeResults;
 import com.checkmarx.ast.containersrealtime.ContainersRealtimeResults;
 import com.checkmarx.ast.predicate.CustomState;
@@ -524,6 +526,17 @@ public List<TenantSetting> tenantSettings() throws CxException, IOException, Int
         return Execution.executeCommand(withConfigArguments(arguments), logger, TenantSetting::listFromLine);
     }
 
+    public MaskResult maskSecrets(@NonNull String filePath) throws CxException, IOException, InterruptedException {
+        List<String> arguments = new ArrayList<>();
+
+        arguments.add(CxConstants.CMD_UTILS);
+        arguments.add(CxConstants.SUB_CMD_MASK);
+        arguments.add(CxConstants.RESULT_FILE);
+        arguments.add(filePath);
+
+        return Execution.executeCommand(withConfigArguments(arguments), logger, MaskResult::fromLine);
+    }
+
     private int getIndexOfBfLNode(List<Node> bflNodes, List<Node> resultNodes) {
 
         int bflNodeNotFound = -1;

src/main/java/com/checkmarx/ast/wrapper/Execution.java

@@ -57,7 +57,7 @@ static <T> T executeCommand(List<String> arguments,
             String line;
             StringBuilder output = new StringBuilder();
             while ((line = br.readLine()) != null) {
-                logger.info(line);
+                logger.debug(line);
                 output.append(line).append(LINE_SEPARATOR);
                 T parsedLine = lineParser.apply(line);
                 if (parsedLine != null) {
@@ -98,7 +98,7 @@ static String executeCommand(List<String> arguments,
             String line;
             StringBuilder stringBuilder = new StringBuilder();
             while ((line = br.readLine()) != null) {
-                logger.info(line);
+                logger.debug(line);
                 stringBuilder.append(line).append(LINE_SEPARATOR);
             }
             process.waitFor();

src/main/resources/cx-linux

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:059e958eb6e2704f9e9ba7a51dd7efc086a85e53248000270d648944d5d6dae3
-size 80134328
+oid sha256:64460df9a00bcc48a599688c878ddabe20187127f5f7e0fb84cee08abc21120f
+size 80982200

src/main/resources/cx-linux-arm

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:75fe395dc699e20e599db8ee0d86a60b3dec3183ccfccfd5e7fbabfeda413cb0
-size 76480696
+oid sha256:823ba8fb7a41df2198af4371c1868d06e8ec1116cc8c98a1a6ba2e1502fa6090
+size 77267128

src/main/resources/cx-mac

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:5fce2cbfd8eeca6831fc270a7798e978bf3123b17244492ab1b183a9ad224392
-size 161292816
+oid sha256:ab046570766900b90ca6412175eb60096bbbc1b251142237f4f836f54afb56be
+size 162864288