System state or custom state id, and add tests.

Author: tiagobcx

internal/commands/predicates.go

@@ -119,7 +119,10 @@ func triageUpdateSubCommand(resultsPredicatesWrapper wrappers.ResultsPredicatesW
 	markFlagAsRequired(triageUpdateCmd, params.SimilarityIDFlag)
 	markFlagAsRequired(triageUpdateCmd, params.SeverityFlag)
 	markFlagAsRequired(triageUpdateCmd, params.ProjectIDFlag)
-	markFlagAsRequired(triageUpdateCmd, params.StateFlag)
+	flagResponse, _ := wrappers.GetSpecificFeatureFlag(featureFlagsWrapper, wrappers.SastCustomStateEnabled)
+	if !flagResponse.Status {
+		markFlagAsRequired(triageUpdateCmd, params.StateFlag)
+	}
 	markFlagAsRequired(triageUpdateCmd, params.ScanTypeFlag)
 
 	return triageUpdateCmd
@@ -184,16 +187,11 @@ func runTriageUpdate(resultsPredicatesWrapper wrappers.ResultsPredicatesWrapper,
 		if !criticalEnabled && strings.EqualFold(severity, "critical") {
 			return errors.Errorf("%s", "Critical severity is not available for your tenant.This severity status will be enabled shortly")
 		}
-		if isCustomState(state) {
-			if customStateID == "" {
-				var err error
-				customStateID, err = getCustomStateID(customStatesWrapper, state)
-				if err != nil {
-					return errors.Wrapf(err, "Failed to get custom state ID for state: %s", state)
-				}
-			}
-		} else {
-			customStateID = ""
+
+		var err error
+		state, customStateID, err = determineSystemOrCustomState(customStatesWrapper, featureFlagsWrapper, state, customStateID)
+		if err != nil {
+			return err
 		}
 
 		predicate := &wrappers.PredicateRequest{
@@ -205,15 +203,39 @@ func runTriageUpdate(resultsPredicatesWrapper wrappers.ResultsPredicatesWrapper,
 			Comment:       comment,
 		}
 
-		_, err := resultsPredicatesWrapper.PredicateSeverityAndState(predicate, scanType)
+		_, err = resultsPredicatesWrapper.PredicateSeverityAndState(predicate, scanType)
 		if err != nil {
 			return errors.Wrapf(err, "%s", "Failed updating the predicate")
 		}
 
 		return nil
 	}
 }
+func determineSystemOrCustomState(customStatesWrapper wrappers.CustomStatesWrapper, featureFlagsWrapper wrappers.FeatureFlagsWrapper, state, customStateID string) (string, string, error) {
+	if isCustomState(state) {
+		flagResponse, _ := wrappers.GetSpecificFeatureFlag(featureFlagsWrapper, wrappers.SastCustomStateEnabled)
+		if !flagResponse.Status {
+			return "", "", errors.Errorf("%s", "Custom state is not available for your tenant.")
+		}
+
+		if customStateID == "" {
+			if state == "" {
+				return "", "", errors.Errorf("state-id is required when state is not provided")
+			}
+			var err error
+			customStateID, err = getCustomStateID(customStatesWrapper, state)
+			if err != nil {
+				return "", "", errors.Wrapf(err, "Failed to get custom state ID for state: %s", state)
+			}
+		}
+		return "", customStateID, nil
+	}
+	return state, "", nil
+}
 func isCustomState(state string) bool {
+	if state == "" {
+		return true
+	}
 	systemStates := []string{"TO_VERIFY", "NOT_EXPLOITABLE", "PROPOSED_NOT_EXPLOITABLE", "CONFIRMED", "URGENT"}
 	for _, customState := range systemStates {
 		if strings.EqualFold(state, customState) {

internal/commands/predicates_test.go

@@ -134,3 +134,173 @@ func TestIsCustomState(t *testing.T) {
 		})
 	}
 }
+func TestRunTriageUpdateWithNotFoundCustomState(t *testing.T) {
+	mockResultsPredicatesWrapper := &mock.ResultsPredicatesMockWrapper{}
+	mockFeatureFlagsWrapper := &mock.FeatureFlagsMockWrapper{}
+	mockCustomStatesWrapper := &mock.CustomStatesMockWrapper{}
+	mock.Flag = wrappers.FeatureFlagResponseModel{
+		Name:   "test-flag",
+		Status: true,
+	}
+	cmd := triageUpdateSubCommand(mockResultsPredicatesWrapper, mockFeatureFlagsWrapper, mockCustomStatesWrapper)
+	cmd.SetArgs([]string{
+		"--similarity-id", "MOCK",
+		"--project-id", "MOCK",
+		"--severity", "low",
+		"--state", "CUSTOM_STATE_1",
+		"--scan-type", "sast",
+	})
+
+	err := cmd.Execute()
+	assert.ErrorContains(t, err, "Failed to get custom state ID for state: CUSTOM_STATE_1: No matching state found for CUSTOM_STATE_1")
+}
+
+func TestRunTriageUpdateWithCustomState(t *testing.T) {
+	mockResultsPredicatesWrapper := &mock.ResultsPredicatesMockWrapper{}
+	mockFeatureFlagsWrapper := &mock.FeatureFlagsMockWrapper{}
+	mockCustomStatesWrapper := &mock.CustomStatesMockWrapper{}
+	mock.Flag = wrappers.FeatureFlagResponseModel{
+		Name:   "test-flag",
+		Status: true,
+	}
+	cmd := triageUpdateSubCommand(mockResultsPredicatesWrapper, mockFeatureFlagsWrapper, mockCustomStatesWrapper)
+	cmd.SetArgs([]string{
+		"--similarity-id", "MOCK",
+		"--project-id", "MOCK",
+		"--severity", "low",
+		"--state", "demo2",
+		"--scan-type", "sast",
+	})
+
+	err := cmd.Execute()
+	assert.NilError(t, err)
+}
+
+func TestRunTriageUpdateWithSystemState(t *testing.T) {
+	mockResultsPredicatesWrapper := &mock.ResultsPredicatesMockWrapper{}
+	mockFeatureFlagsWrapper := &mock.FeatureFlagsMockWrapper{}
+	mockCustomStatesWrapper := &mock.CustomStatesMockWrapper{}
+
+	cmd := triageUpdateSubCommand(mockResultsPredicatesWrapper, mockFeatureFlagsWrapper, mockCustomStatesWrapper)
+	cmd.SetArgs([]string{
+		"--similarity-id", "MOCK",
+		"--project-id", "MOCK",
+		"--severity", "low",
+		"--state", "TO_VERIFY",
+		"--scan-type", "sast",
+	})
+
+	err := cmd.Execute()
+	assert.NilError(t, err)
+}
+
+func TestDetermineSystemOrCustomState(t *testing.T) {
+	tests := []struct {
+		name                string
+		state               string
+		customStateID       string
+		mockWrapper         wrappers.CustomStatesWrapper
+		mockFeatureFlags    wrappers.FeatureFlagsWrapper
+		flag                wrappers.FeatureFlagResponseModel
+		expectedState       string
+		expectedCustomState string
+		expectedError       string
+	}{
+		{
+			name:                "Custom state with valid state name",
+			state:               "demo2",
+			customStateID:       "",
+			mockWrapper:         &mock.CustomStatesMockWrapper{},
+			mockFeatureFlags:    &mock.FeatureFlagsMockWrapper{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "",
+			expectedCustomState: "2",
+			expectedError:       "",
+		},
+		{
+			name:                "Custom state with valid state ID",
+			state:               "",
+			customStateID:       "2",
+			mockWrapper:         &mock.CustomStatesMockWrapper{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "",
+			expectedCustomState: "2",
+			expectedError:       "",
+		},
+		{
+			name:                "System state",
+			state:               "TO_VERIFY",
+			customStateID:       "",
+			mockWrapper:         &mock.CustomStatesMockWrapper{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "TO_VERIFY",
+			expectedCustomState: "",
+			expectedError:       "",
+		},
+		{
+			name:                "State ID required when state is not provided",
+			state:               "",
+			customStateID:       "",
+			mockWrapper:         &mock.CustomStatesMockWrapper{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "",
+			expectedCustomState: "",
+			expectedError:       "state-id is required when state is not provided",
+		},
+		{
+			name:                "Failed to get custom state ID",
+			state:               "INVALID_STATE",
+			customStateID:       "",
+			mockWrapper:         &mock.CustomStatesMockWrapperWithError{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "",
+			expectedCustomState: "",
+			expectedError:       "Failed to get custom state ID for state: INVALID_STATE",
+		},
+		{
+			name:                "Both state and state ID provided - valid custom state",
+			state:               "demo2",
+			customStateID:       "2",
+			mockWrapper:         &mock.CustomStatesMockWrapper{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "",
+			expectedCustomState: "2",
+			expectedError:       "",
+		},
+		{
+			name:                "Both state and state ID provided - valid system state",
+			state:               "TO_VERIFY",
+			customStateID:       "2",
+			mockWrapper:         &mock.CustomStatesMockWrapper{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "TO_VERIFY",
+			expectedCustomState: "",
+			expectedError:       "",
+		},
+		{
+			name:                "Both state and state ID provided - invalid state",
+			state:               "INVALID_STATE",
+			customStateID:       "2",
+			mockWrapper:         &mock.CustomStatesMockWrapperWithError{},
+			flag:                wrappers.FeatureFlagResponseModel{Name: "test-flag", Status: true},
+			expectedState:       "",
+			expectedCustomState: "2",
+			expectedError:       "",
+		},
+	}
+
+	for _, tt := range tests {
+		tt := tt
+		t.Run(tt.name, func(t *testing.T) {
+			mock.Flag = tt.flag
+			state, customStateID, err := determineSystemOrCustomState(tt.mockWrapper, tt.mockFeatureFlags, tt.state, tt.customStateID)
+			if tt.expectedError != "" {
+				assert.ErrorContains(t, err, tt.expectedError)
+			} else {
+				assert.NilError(t, err)
+			}
+			assert.Equal(t, state, tt.expectedState)
+			assert.Equal(t, customStateID, tt.expectedCustomState)
+		})
+	}
+}

internal/wrappers/feature-flags.go

@@ -10,6 +10,7 @@ const tenantIDClaimKey = "tenant_id"
 const PackageEnforcementEnabled = "PACKAGE_ENFORCEMENT_ENABLED"
 const CVSSV3Enabled = "CVSS_V3_ENABLED"
 const MinioEnabled = "MINIO_ENABLED"
+const SastCustomStateEnabled = "SAST_CUSTOM_STATES_ENABLED"
 const ContainerEngineCLIEnabled = "CONTAINER_ENGINE_CLI_ENABLED"
 const SCSEngineCLIEnabled = "NEW_2MS_SCORECARD_RESULTS_CLI_ENABLED"
 const NewScanReportEnabled = "NEW_SAST_SCAN_REPORT_ENABLED"
@@ -59,6 +60,10 @@ var FeatureFlagsBaseMap = []CommandFlags{
 				Name:    CVSSV3Enabled,
 				Default: false,
 			},
+			{
+				Name:    SastCustomStateEnabled,
+				Default: false,
+			},
 		},
 	},
 }