Add support for secrets scanning with new CxSecretsResult class and update execution commands

cx-ben-alvo · cx-ben-alvo · commit c9384a059c63 · 2025-06-09T14:23:43.000+03:00
diff --git a/src/main/secrets/CxSecrets.ts b/src/main/secrets/CxSecrets.ts
@@ -0,0 +1,43 @@
+export default class CxSecretsResult {
+    title: string;
+    description: string;
+    filepath: string;
+    severity: string;
+    locations: { line: number, startIndex: number, endIndex: number }[];
+
+    static parseResult(resultObject: any): CxSecretsResult[] {
+        const results = resultObject.Packages;
+        let secretsResults: CxSecretsResult[] = [];
+        if (results instanceof Array) {
+            secretsResults = results.map((member: any) => {
+                const secretsResult = new CxSecretsResult();
+                secretsResult.title = member.Title;
+                secretsResult.description = member.Description;
+                secretsResult.filepath = member.FilePath;
+                secretsResult.locations = Array.isArray(member.Locations)
+                    ? member.Locations.map((l: any) => ({
+                        line: l.Line,
+                        startIndex: l.StartIndex,
+                        endIndex: l.EndIndex,
+                    }))
+                    : [];
+                return secretsResult;
+            });
+        } else {
+            const secretsResult = new CxSecretsResult();
+            secretsResult.title = results.Title;
+            secretsResult.description = results.Description;
+            secretsResult.filepath = results.FilePath;
+            secretsResult.filepath = results.FilePath;
+            secretsResult.locations = Array.isArray(results.Locations)
+                ? results.Locations.map((l: any) => ({
+                    line: l.Line,
+                    startIndex: l.StartIndex,
+                    endIndex: l.EndIndex,
+                }))
+                : [];
+            secretsResults.push(secretsResult);
+        }
+        return secretsResults;
+    }
+}
diff --git a/src/main/wrapper/CxConstants.ts b/src/main/wrapper/CxConstants.ts
@@ -90,6 +90,7 @@ export enum CxConstants {
     SCAN_TYPE = "CxScan",
     SCAN_ASCA = "CxAsca",
     SCAN_OSS = "CxOss",
+    SCAN_SECRETS = "CxSecrets",
     PROJECT_TYPE = "CxProject",
     PREDICATE_TYPE = "CxPredicate",
     CODE_BASHING_TYPE = "CxCodeBashing",
diff --git a/src/main/wrapper/CxWrapper.ts b/src/main/wrapper/CxWrapper.ts
@@ -160,7 +160,7 @@ export class CxWrapper {
         const commands: string[] = [CxConstants.CMD_SCAN, CxConstants.CMD_OSS, CxConstants.SOURCE, sourceFile];
         commands.push(...this.initializeCommands(false));
         const exec = new ExecutionService();
-        return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_OSS);
+        return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_SECRETS);
     }
 
     async scanCancel(id: string): Promise<CxCommandOutput> {
diff --git a/src/main/wrapper/ExecutionService.ts b/src/main/wrapper/ExecutionService.ts

Original file line number	Diff line number	Diff line change
`@@ -160,7 +160,7 @@ export class CxWrapper {`
`160`	`160`	`const commands: string[] = [CxConstants.CMD_SCAN, CxConstants.CMD_OSS, CxConstants.SOURCE, sourceFile];`
`161`	`161`	`commands.push(...this.initializeCommands(false));`
`162`	`162`	`const exec = new ExecutionService();`
`163`		`- return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_OSS);`
	`163`	`+ return await exec.executeCommands(this.config.pathToExecutable, commands, CxConstants.SCAN_SECRETS);`
`164`	`164`	`}`
`165`	`165`
`166`	`166`	`async scanCancel(id: string): Promise<CxCommandOutput> {`