checked-lint

cx-hitesh-madgulkar · cx-hitesh-madgulkar · commit 16dd986e5c66 · 2025-11-19T17:39:05.000+05:30
diff --git a/internal/commands/predicates.go b/internal/commands/predicates.go
@@ -99,7 +99,6 @@ func triageShowSubCommand(resultsPredicatesWrapper wrappers.ResultsPredicatesWra
 	triageShowCmd.PersistentFlags().String(params.ScanTypeFlag, "", "Scan Type")
 	triageShowCmd.PersistentFlags().StringSlice(params.VulnerabilitiesFlag, []string{}, "List Vulnerabilities string")
 
-	// markFlagAsRequired(triageShowCmd, params.SimilarityIDFlag)
 	markFlagAsRequired(triageShowCmd, params.ProjectIDFlag)
 	markFlagAsRequired(triageShowCmd, params.ScanTypeFlag)
 
@@ -158,23 +157,25 @@ func runTriageShow(resultsPredicatesWrapper wrappers.ResultsPredicatesWrapper) f
 		}
 
 		if strings.EqualFold(scanType, params.ScaType) {
-			//SCA
+			// SCA
 			if len(vulnerabilityDetails) == 0 {
 				return errors.Errorf("%s", "Failed showing the predicate. Vulnerabilities are required for SCA triage")
 			}
 			scaResponse, err := resultsPredicatesWrapper.ScaPredicateResult(vulnerabilityDetails, projectID)
 			if err != nil {
 				return errors.Wrapf(err, "%s", "Failed showing the predicate")
 			}
-			err = printByFormat(cmd, toScaPredicateResultView(*scaResponse))
+			err = printByFormat(cmd, toScaPredicateResultView(scaResponse))
 			if err != nil {
 				return err
 			}
 			return nil
 		} else {
-			//other than SCA
+			// other than SCA
 			predicatesCollection, errorModel, err = resultsPredicatesWrapper.GetAllPredicatesForSimilarityID(similarityID, projectID, scanType)
-
+			if err != nil {
+				return errors.Wrapf(err, "%s", "Failed showing the predicate")
+			}
 			// Checking the response
 			if errorModel != nil {
 				return errors.Errorf(
@@ -227,7 +228,7 @@ func runTriageUpdate(resultsPredicatesWrapper wrappers.ResultsPredicatesWrapper,
 	}
 }
 
-func preparePredicateRequest(vulnerabilityDetails []string, similarityID string, projectID string, severity string, state string, customStateID int, comment string, scanType string) (interface{}, error) {
+func preparePredicateRequest(vulnerabilityDetails []string, similarityID, projectID, severity, state string, customStateID int, comment, scanType string) (interface{}, error) {
 	scanType = strings.ToLower(scanType)
 	scanType = strings.TrimSpace(scanType)
 	if strings.EqualFold(scanType, Sca) {
@@ -270,13 +271,13 @@ func transformState(state string) string {
 	return ""
 }
 
-func prepareScaTriagePayload(vulnerabilityDetails []string, comment string, state string, projectId string) (interface{}, error) {
+func prepareScaTriagePayload(vulnerabilityDetails []string, comment, state, projectID string) (interface{}, error) {
 	if len(vulnerabilityDetails) == 0 {
 		return nil, errors.Errorf("Vulnerabilities details are required.")
 	}
 	scaTriageInfo := make(map[string]interface{})
 	for _, vulnerability := range vulnerabilityDetails {
-		vulnerabilityKeyVal := strings.SplitN(vulnerability, "=", 2)
+		vulnerabilityKeyVal := strings.Split(vulnerability, "=")
 		err := validateVulnerabilityDetails(vulnerabilityKeyVal)
 		if err != nil {
 			return nil, err
@@ -295,7 +296,7 @@ func prepareScaTriagePayload(vulnerabilityDetails []string, comment string, stat
 		return nil, errors.Errorf("Package manager is required")
 	}
 
-	scaTriageInfo["projectIds"] = []string{projectId}
+	scaTriageInfo["projectIds"] = []string{projectID}
 	actionInfo := make(map[string]interface{})
 	actionInfo["actionType"] = params.ChangeState
 	actionInfo["value"] = state
@@ -307,7 +308,7 @@ func prepareScaTriagePayload(vulnerabilityDetails []string, comment string, stat
 		return nil, errors.Errorf("Failed to prepare SCA triage request")
 	}
 	payload := wrappers.ScaPredicateRequest{}
-	err = json.Unmarshal(b, payload)
+	err = json.Unmarshal(b, &payload)
 	if err != nil {
 		logger.PrintIfVerbose(fmt.Sprintf("Failed to deserialize vulnerabilities %s", string(b)))
 		return nil, errors.Errorf("Failed to prepare SCA triage request")
@@ -319,9 +320,6 @@ func validateVulnerabilityDetails(vulnerability []string) error {
 	if len(vulnerability) != params.KeyValuePairSize {
 		return errors.Errorf("Invalid vulnerabilities. It should be in a KEY=VALUE format")
 	}
-	if len(strings.Split(vulnerability[1], ",")) > params.SingleValueSize || len(strings.Split(vulnerability[1], ",")) > params.SingleValueSize {
-		return errors.Errorf("Cannot specify multiple values to key %s", vulnerability[0])
-	}
 	return nil
 }
 
@@ -397,12 +395,12 @@ type scaPredicateResultView struct {
 	CreatedAt       time.Time `format:"name:Created at;time:01-02-06 15:04:05"`
 }
 
-func toScaPredicateResultView(scaPredicateResult wrappers.ScaPredicateResult) []scaPredicateResultView {
+func toScaPredicateResultView(scaPredicateResult *wrappers.ScaPredicateResult) []scaPredicateResultView {
 	view := []scaPredicateResultView{}
 	if len(scaPredicateResult.Actions) > 0 {
 		for _, action := range scaPredicateResult.Actions {
 			view = append(view, scaPredicateResultView{
-				VulnerabilityID: scaPredicateResult.Context.VulnerabilityId,
+				VulnerabilityID: scaPredicateResult.Context.VulnerabilityID,
 				PackageName:     scaPredicateResult.Context.PackageName,
 				PackageVersion:  scaPredicateResult.Context.PackageVersion,
 				PackageManager:  scaPredicateResult.Context.PackageManager,
diff --git a/internal/commands/predicates_test.go b/internal/commands/predicates_test.go
@@ -347,7 +347,7 @@ func TestPrepareScaTriagePayload(t *testing.T) {
 		vulnerabilityDetails []string
 		comment              string
 		state                string
-		projectId            string
+		projectID            string
 		expectedError        string
 	}{
 		{
@@ -359,7 +359,7 @@ func TestPrepareScaTriagePayload(t *testing.T) {
 			},
 			comment:       "Testing missing package name",
 			state:         "NOT_EXPLOITABLE",
-			projectId:     "test-project-123",
+			projectID:     "test-project-123",
 			expectedError: "Package name is required",
 		},
 		{
@@ -371,7 +371,7 @@ func TestPrepareScaTriagePayload(t *testing.T) {
 			},
 			comment:       "Testing missing package version",
 			state:         "NOT_EXPLOITABLE",
-			projectId:     "test-project-123",
+			projectID:     "test-project-123",
 			expectedError: "Package version is required",
 		},
 		{
@@ -383,7 +383,7 @@ func TestPrepareScaTriagePayload(t *testing.T) {
 			},
 			comment:       "Testing missing package manager",
 			state:         "NOT_EXPLOITABLE",
-			projectId:     "test-project-123",
+			projectID:     "test-project-123",
 			expectedError: "Package manager is required",
 		},
 		{
@@ -395,15 +395,15 @@ func TestPrepareScaTriagePayload(t *testing.T) {
 			},
 			comment:       "Testing invalid format",
 			state:         "NOT_EXPLOITABLE",
-			projectId:     "test-project-123",
+			projectID:     "test-project-123",
 			expectedError: "Invalid vulnerabilities. It should be in a KEY=VALUE format",
 		},
 	}
 
 	for _, tt := range tests {
 		tt := tt
 		t.Run(tt.name, func(t *testing.T) {
-			payload, err := prepareScaTriagePayload(tt.vulnerabilityDetails, tt.comment, tt.state, tt.projectId)
+			payload, err := prepareScaTriagePayload(tt.vulnerabilityDetails, tt.comment, tt.state, tt.projectID)
 			if tt.expectedError != "" {
 				assert.ErrorContains(t, err, tt.expectedError)
 			} else {
@@ -454,9 +454,9 @@ func TestToScaPredicateResultView(t *testing.T) {
 	createdAt1, _ := time.Parse(time.RFC3339, "2024-01-15T10:00:00Z")
 	createdAt2, _ := time.Parse(time.RFC3339, "2024-01-16T12:00:00Z")
 
-	scaPredicateResult := wrappers.ScaPredicateResult{
+	scaPredicateResult := &wrappers.ScaPredicateResult{
 		Context: wrappers.Context{
-			VulnerabilityId: "CVE-2021-23337",
+			VulnerabilityID: "CVE-2021-23337",
 			PackageName:     "lodash",
 			PackageVersion:  "4.17.20",
 			PackageManager:  "npm",
@@ -505,9 +505,9 @@ func TestToScaPredicateResultView(t *testing.T) {
 
 func TestToScaPredicateResultView_EmptyActions(t *testing.T) {
 	// Arrange: Create SCA predicate result with no actions
-	scaPredicateResult := wrappers.ScaPredicateResult{
+	scaPredicateResult := &wrappers.ScaPredicateResult{
 		Context: wrappers.Context{
-			VulnerabilityId: "CVE-2021-23337",
+			VulnerabilityID: "CVE-2021-23337",
 			PackageName:     "lodash",
 			PackageVersion:  "4.17.20",
 			PackageManager:  "npm",
diff --git a/internal/wrappers/mock/predicates-mock.go b/internal/wrappers/mock/predicates-mock.go
@@ -44,7 +44,7 @@ func (r ResultsPredicatesWrapper) GetAllPredicatesForSimilarityID(similarityID,
 	}, nil, nil
 }
 
-func (r ResultsPredicatesWrapper) ScaPredicateResult(vulnerabilityDetails []string, projectId string) (*wrappers.ScaPredicateResult, error) {
+func (r ResultsPredicatesWrapper) ScaPredicateResult(vulnerabilityDetails []string, projectID string) (*wrappers.ScaPredicateResult, error) {
 	fmt.Println("Called 'ScaPredicateResult' in ResultsPredicatesMockWrapper")
 	return nil, nil
 }
diff --git a/internal/wrappers/predicates-http.go b/internal/wrappers/predicates-http.go
@@ -4,6 +4,7 @@ import (
 	"bytes"
 	"encoding/json"
 	"fmt"
+	"io"
 	"net/http"
 	"strings"
 
@@ -26,18 +27,21 @@ func NewResultsPredicatesHTTPWrapper() ResultsPredicatesWrapper {
 	return &ResultsPredicatesHTTPWrapper{}
 }
 
-func (r *ResultsPredicatesHTTPWrapper) ScaPredicateResult(vulnerabilityDetails []string, projectId string) (*ScaPredicateResult, error) {
+func (r *ResultsPredicatesHTTPWrapper) ScaPredicateResult(vulnerabilityDetails []string, projectID string) (*ScaPredicateResult, error) {
 	clientTimeout := viper.GetUint(params.ClientTimeoutKey)
 	r.SetPath(viper.GetString(params.ScaResultsPredicatesPathEnv))
 	var request = "/entity-profile/search"
 	logger.PrintIfVerbose(fmt.Sprintf("Sending POST request to %s", r.path+request))
 
 	scaPredicateRequest := make(map[string]interface{})
 	for _, vulnerability := range vulnerabilityDetails {
-		vulnerabilityKeyVal := strings.SplitN(vulnerability, "=", 2)
+		vulnerabilityKeyVal := strings.Split(vulnerability, "=")
+		if len(vulnerabilityKeyVal) != params.KeyValuePairSize {
+			return nil, errors.Errorf("Invalid vulnerability details format: %s", vulnerability)
+		}
 		scaPredicateRequest[vulnerabilityKeyVal[0]] = vulnerabilityKeyVal[1]
 	}
-	scaPredicateRequest["projectId"] = projectId
+	scaPredicateRequest["projectId"] = projectID
 	scaPredicateRequest["actionType"] = params.ChangeState
 	jsonBody, err := json.Marshal(scaPredicateRequest)
 	if err != nil {
@@ -55,7 +59,6 @@ func (r *ResultsPredicatesHTTPWrapper) ScaPredicateResult(vulnerabilityDetails [
 	if resp.StatusCode != http.StatusOK {
 		return nil, errors.Errorf("Failed to get SCA predicate result.")
 	}
-	fmt.Println("HM Response: ", resp.Body)
 	decoder := json.NewDecoder(resp.Body)
 	var scaPredicates ScaPredicateResult
 	err = decoder.Decode(&scaPredicates)
@@ -147,27 +150,16 @@ func (r ResultsPredicatesHTTPWrapper) PredicateSeverityAndState(predicate interf
 	*WebError, error,
 ) {
 	clientTimeout := viper.GetUint(params.ClientTimeoutKey)
-	var predicateModel interface{}
-	if !strings.EqualFold(strings.TrimSpace(scanType), params.ScaType) {
-		predicateModel = []interface{}{predicate}
-	} else {
-		predicateModel = predicate
-	}
+
+	predicateModel := preparePredicateModel(predicate, scanType)
 	jsonBytes, err := json.Marshal(predicateModel)
 	if err != nil {
 		return nil, err
 	}
-	var triageAPIPath string
-	if strings.EqualFold(strings.TrimSpace(scanType), params.SastType) {
-		triageAPIPath = viper.GetString(params.SastResultsPredicatesPathKey)
-	} else if strings.EqualFold(strings.TrimSpace(scanType), params.KicsType) || strings.EqualFold(strings.TrimSpace(scanType), params.IacType) {
-		triageAPIPath = viper.GetString(params.KicsResultsPredicatesPathKey)
-	} else if strings.EqualFold(strings.TrimSpace(scanType), params.ScsType) {
-		triageAPIPath = viper.GetString(params.ScsResultsWritePredicatesPathKey)
-	} else if strings.EqualFold(strings.TrimSpace(scanType), params.ScaType) {
-		triageAPIPath = viper.GetString(params.ScaResultsPredicatesPathEnv)
-	} else {
-		return nil, errors.Errorf(invalidScanType, scanType)
+
+	triageAPIPath, err := getTriageAPIPath(scanType)
+	if err != nil {
+		return nil, err
 	}
 
 	logger.PrintIfVerbose(fmt.Sprintf("Sending POST request to  %s", triageAPIPath))
@@ -186,38 +178,71 @@ func (r ResultsPredicatesHTTPWrapper) PredicateSeverityAndState(predicate interf
 		_ = resp.Body.Close()
 	}()
 
-	// in case of ne/pne when mandatory comment arent provided, cli is not transforming error message
+	if err := checkMandatoryCommentError(resp.Body, scanType); err != nil {
+		return nil, err
+	}
+
+	return nil, handlePredicateStatusCode(resp.StatusCode)
+}
+
+func preparePredicateModel(predicate interface{}, scanType string) interface{} {
+	if !strings.EqualFold(strings.TrimSpace(scanType), params.ScaType) {
+		return []interface{}{predicate}
+	}
+	return predicate
+}
+
+func getTriageAPIPath(scanType string) (string, error) {
+	ScanType := strings.ToLower(strings.TrimSpace(scanType))
+
+	switch ScanType {
+	case strings.ToLower(params.SastType):
+		return viper.GetString(params.SastResultsPredicatesPathKey), nil
+	case strings.ToLower(params.KicsType), strings.ToLower(params.IacType):
+		return viper.GetString(params.KicsResultsPredicatesPathKey), nil
+	case strings.ToLower(params.ScsType):
+		return viper.GetString(params.ScsResultsWritePredicatesPathKey), nil
+	case strings.ToLower(params.ScaType):
+		return viper.GetString(params.ScaResultsPredicatesPathEnv), nil
+	default:
+		return "", errors.Errorf(invalidScanType, scanType)
+	}
+}
+
+func checkMandatoryCommentError(body io.ReadCloser, scanType string) error {
 	responseMap := make(map[string]interface{})
-	if err := json.NewDecoder(resp.Body).Decode(&responseMap); err != nil {
-		if scanType != params.ScaType { // for sca, we are not getting any response in the response body, so we are not logging the error
+	if err := json.NewDecoder(body).Decode(&responseMap); err != nil {
+		if scanType != params.ScaType {
 			logger.PrintIfVerbose(fmt.Sprintf("failed to read the response, %v", err.Error()))
 		}
-	} else {
-		if val, ok := responseMap["code"].(float64); ok {
-			if val == 4002 && responseMap["message"] != nil {
-				if errMsg, ok := responseMap["message"].(string); ok {
-					if errMsg == "A comment is required to make changes to the result state" {
-						return nil, errors.Errorf(errMsg)
-					}
-				}
+		return nil
+	}
+
+	if val, ok := responseMap["code"].(float64); ok && val == 4002 {
+		if errMsg, ok := responseMap["message"].(string); ok {
+			if errMsg == "A comment is required to make changes to the result state" {
+				return errors.Errorf(errMsg)
 			}
 		}
 	}
+	return nil
+}
 
-	switch resp.StatusCode {
-	case http.StatusBadRequest, http.StatusInternalServerError:
-		return nil, errors.Errorf("Predicate bad request.")
+func handlePredicateStatusCode(statusCode int) error {
+	switch statusCode {
 	case http.StatusOK, http.StatusCreated:
 		fmt.Println("Predicate updated successfully.")
-		return nil, nil
+		return nil
 	case http.StatusNotModified:
-		return nil, errors.Errorf("No changes to update.")
+		return errors.Errorf("No changes to update.")
 	case http.StatusForbidden:
-		return nil, errors.Errorf("No permission to update predicate.")
+		return errors.Errorf("No permission to update predicate.")
 	case http.StatusNotFound:
-		return nil, errors.Errorf("Predicate not found.")
+		return errors.Errorf("Predicate not found.")
+	case http.StatusBadRequest, http.StatusInternalServerError:
+		return errors.Errorf("Predicate bad request.")
 	default:
-		return nil, errors.Errorf("response status code %d", resp.StatusCode)
+		return errors.Errorf("response status code %d", statusCode)
 	}
 }
 
diff --git a/internal/wrappers/predicates.go b/internal/wrappers/predicates.go
@@ -26,7 +26,7 @@ type ScaPredicateRequest struct {
 	PackageName     string      `json:"packageName"`
 	PackageVersion  string      `json:"packageVersion"`
 	PackageManager  string      `json:"packageManager"`
-	VulnerabilityId string      `json:"vulnerabilityId"`
+	VulnerabilityID string      `json:"vulnerabilityId"`
 	ProjectIds      []string    `json:"projectIds"`
 	Actions         []ScaAction `json:"actions"`
 }
@@ -81,7 +81,7 @@ type Context struct {
 	PackageManager  string `json:"PackageManager"`
 	PackageName     string `json:"PackageName"`
 	PackageVersion  string `json:"PackageVersion"`
-	VulnerabilityId string `json:"VulnerabilityId"`
+	VulnerabilityID string `json:"VulnerabilityId"`
 }
 
 type Action struct {
@@ -104,7 +104,7 @@ type CustomStatesWrapper interface {
 }
 
 type ResultsPredicatesWrapper interface {
-	ScaPredicateResult(vulnerabilityDetails []string, projectId string) (*ScaPredicateResult, error)
+	ScaPredicateResult(vulnerabilityDetails []string, projectID string) (*ScaPredicateResult, error)
 	PredicateSeverityAndState(predicate interface{}, scanType string) (*WebError, error)
 	GetAllPredicatesForSimilarityID(
 		similarityID string, projectID string, scannerType string,

Original file line number	Diff line number	Diff line change
`@@ -44,7 +44,7 @@ func (r ResultsPredicatesWrapper) GetAllPredicatesForSimilarityID(similarityID,`
`44`	`44`	`}, nil, nil`
`45`	`45`	`}`
`46`	`46`
`47`		`-func (r ResultsPredicatesWrapper) ScaPredicateResult(vulnerabilityDetails []string, projectId string) (*wrappers.ScaPredicateResult, error) {`
	`47`	`+func (r ResultsPredicatesWrapper) ScaPredicateResult(vulnerabilityDetails []string, projectID string) (*wrappers.ScaPredicateResult, error) {`
`48`	`48`	`fmt.Println("Called 'ScaPredicateResult' in ResultsPredicatesMockWrapper")`
`49`	`49`	`return nil, nil`
`50`	`50`	`}`