added route coverage tool. Also increased the data returned for the Application to include Last Seen and Language Type

Author: JoeBeeContrast

src/main/java/com/contrast/labs/ai/mcp/contrast/AssessService.java

@@ -234,7 +234,7 @@ public List<ApplicationData> getApplications(String app_name) throws IOException
             List<ApplicationData> filteredApps = new ArrayList<>();
             for(Application app : applications) {
                 if(app.getName().toLowerCase().contains(app_name.toLowerCase())) {
-                    filteredApps.add(new ApplicationData(app.getName(), app.getStatus(), app.getId()));
+                    filteredApps.add(new ApplicationData(app.getName()m app.getStatus(), app.getId(), app.getLastSeen(), app.getLanguage()));
                     logger.debug("Found matching application - ID: {}, Name: {}, Status: {}", 
                             app.getId(), app.getName(), app.getStatus());
                 }
@@ -250,7 +250,7 @@ public List<ApplicationData> getApplications(String app_name) throws IOException
 
 
     @Tool(name = "list_all_applications", description = "Takes no argument and list all the applications")
-    public List<ApplicationData> getActiveApplications() throws IOException {
+    public List<ApplicationData> getAllApplications() throws IOException {
         logger.info("Listing all applications");
         ContrastSDK contrastSDK = SDKHelper.getSDK(hostName, apiKey, serviceKey, userName);
         try {
@@ -259,7 +259,8 @@ public List<ApplicationData> getActiveApplications() throws IOException {
 
             List<ApplicationData> returnedApps = new ArrayList<>();
             for(Application app : applications) {
-                returnedApps.add(new ApplicationData(app.getName(), app.getStatus(), app.getId()));
+                returnedApps.add(new ApplicationData(app.getName(), app.getStatus(), app.getId(),
+                        app.getLastSeen(), app.getLanguage()));
             }
 
             logger.info("Found {} applications", returnedApps.size());

src/main/java/com/contrast/labs/ai/mcp/contrast/McpContrastApplication.java

@@ -33,8 +33,8 @@ public static void main(String[] args)  {
 	}
 
 	@Bean
-	public List<ToolCallback> tools(AssessService assessService, SastService sastService,SCAService scaService,ADRService adrService) {
-		return of(ToolCallbacks.from(assessService,sastService,scaService,adrService));
+	public List<ToolCallback> tools(AssessService assessService, SastService sastService,SCAService scaService,ADRService adrService,RouteCoverageService routeCoverageService) {
+		return of(ToolCallbacks.from(assessService,sastService,scaService,adrService,routeCoverageService));
 	}
 
 }

src/main/java/com/contrast/labs/ai/mcp/contrast/RouteCoverageService.java

@@ -0,0 +1,104 @@
+package com.contrast.labs.ai.mcp.contrast;
+
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.SDKExtension;
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.SDKHelper;
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.routecoverage.Route;
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.routecoverage.RouteCoverageResponse;
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.routecoverage.RouteDetailsResponse;
+import com.contrastsecurity.models.Application;
+import com.contrastsecurity.sdk.ContrastSDK;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.ai.tool.annotation.Tool;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Service;
+
+import java.io.IOException;
+import java.util.Optional;
+
+@Service
+public class RouteCoverageService {
+
+    private static final Logger logger = LoggerFactory.getLogger(RouteCoverageService.class);
+
+
+    @Value("${contrast.host-name:${CONTRAST_HOST_NAME:}}")
+    private String hostName;
+
+    @Value("${contrast.api-key:${CONTRAST_API_KEY:}}")
+    private String apiKey;
+
+    @Value("${contrast.service-key:${CONTRAST_SERVICE_KEY:}}")
+    private String serviceKey;
+
+    @Value("${contrast.username:${CONTRAST_USERNAME:}}")
+    private String userName;
+
+    @Value("${contrast.org-id:${CONTRAST_ORG_ID:}}")
+    private String orgID;
+
+    @Tool(name = "get_application_route_coverage", description = "takes a application name and return the route coverage data for that application. " +
+            "If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had atleast one inbound http request to that route/endpoint.")
+    public RouteCoverageResponse getRouteCoverage(String app_name) throws IOException {
+        logger.info("Retrieving route coverage for application by name: {}", app_name);
+        ContrastSDK contrastSDK = SDKHelper.getSDK(hostName, apiKey, serviceKey, userName);
+        SDKExtension sdkExtension = new SDKExtension(contrastSDK);
+        Optional<String> appID = Optional.empty();
+        logger.debug("Searching for application ID matching name: {}", app_name);
+
+        for(Application app : SDKHelper.getApplicationsWithCache(orgID, contrastSDK)) {
+            if(app.getName().toLowerCase().contains(app_name.toLowerCase())) {
+                appID = Optional.of(app.getId());
+                logger.debug("Found matching application with ID: {}", appID.get());
+                break;
+            }
+        }
+
+        if (!appID.isPresent()) {
+            logger.error("Application not found: {}", app_name);
+            throw new IOException("Application not found: " + app_name);
+        }
+
+        logger.debug("Fetching route coverage data for application ID: {}", appID.get());
+        RouteCoverageResponse response = sdkExtension.getRouteCoverage(orgID, appID.get(), null);
+        logger.debug("Found {} routes for application", response.getRoutes().size());
+
+        logger.debug("Retrieving route details for each route");
+        for(Route route : response.getRoutes()) {
+            logger.trace("Fetching details for route: {}", route.getSignature());
+            RouteDetailsResponse routeDetailsResponse = sdkExtension.getRouteDetails(orgID, appID.get(), route.getRouteHash());
+            route.setRouteDetailsResponse(routeDetailsResponse);
+        }
+
+        logger.info("Successfully retrieved route coverage for application: {}", app_name);
+        return response;
+    }
+
+    @Tool(name = "get_application_route_coverage_by_app_id", description = "takes a application id and return the route coverage data for that application. " +
+            "If a route/endpoint is DISCOVERED, it means it has been found by Assess but that route has had no inbound http requests. If it is EXERCISED, it means it has had atleast one inbound http request to that route/endpoint.")
+    public RouteCoverageResponse getRouteCoverageByAppID(String app_id) throws IOException {
+        logger.info("Retrieving route coverage for application by ID: {}", app_id);
+        ContrastSDK contrastSDK = SDKHelper.getSDK(hostName, apiKey, serviceKey, userName);
+        SDKExtension sdkExtension = new SDKExtension(contrastSDK);
+
+        logger.debug("Fetching route coverage data for application ID: {}", app_id);
+        RouteCoverageResponse response = sdkExtension.getRouteCoverage(orgID, app_id, null);
+        logger.debug("Found {} routes for application", response.getRoutes().size());
+
+        logger.debug("Retrieving route details for each route");
+        for(Route route : response.getRoutes()) {
+            logger.trace("Fetching details for route: {}", route.getSignature());
+            RouteDetailsResponse routeDetailsResponse = sdkExtension.getRouteDetails(orgID, app_id, route.getRouteHash());
+            route.setRouteDetailsResponse(routeDetailsResponse);
+        }
+
+        logger.info("Successfully retrieved route coverage for application ID: {}", app_id);
+        return response;
+    }
+
+
+
+
+
+
+}

src/main/java/com/contrast/labs/ai/mcp/contrast/data/ApplicationData.java

@@ -15,5 +15,5 @@
  */
 package com.contrast.labs.ai.mcp.contrast.data;
 
-public record ApplicationData(String name, String status, String appID) {
+public record ApplicationData(String name, String status, String appID, long lastSeen, String language) {
 }

src/main/java/com/contrast/labs/ai/mcp/contrast/sdkexstension/SDKExtension.java

@@ -19,13 +19,13 @@
 import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.LibrariesExtended;
 import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.ProtectData;
 import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.adr.AttackEvent;
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.routecoverage.RouteCoverageResponse;
 import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.sca.LibraryObservation;
 import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.sca.LibraryObservationsResponse;
+import com.contrast.labs.ai.mcp.contrast.sdkexstension.data.routecoverage.RouteDetailsResponse;
 import com.contrastsecurity.exceptions.UnauthorizedException;
-import com.contrastsecurity.http.FilterForm;
-import com.contrastsecurity.http.HttpMethod;
-import com.contrastsecurity.http.LibraryFilterForm;
-import com.contrastsecurity.http.UrlBuilder;
+import com.contrastsecurity.http.*;
+import com.contrastsecurity.models.RouteCoverageBySessionIDAndMetadataRequest;
 import com.contrastsecurity.sdk.ContrastSDK;
 import com.contrastsecurity.sdk.internal.GsonFactory;
 import com.google.gson.Gson;
@@ -166,4 +166,71 @@ private String getLibraryObservationsUrl(String organizationId, String applicati
                 organizationId, applicationId, libraryId, offset, limit);
     }
 
+    /**
+     * Retrieves the detailed observations for a specific route.
+     *
+     * @param organizationId The organization ID
+     * @param applicationId The application ID
+     * @param routeHash The unique hash identifying the route
+     * @return RouteDetailsResponse containing observations for the route
+     * @throws IOException If an I/O error occurs
+     * @throws UnauthorizedException If the request is not authorized
+     */
+    public RouteDetailsResponse getRouteDetails(String organizationId, String applicationId, String routeHash)
+            throws IOException, UnauthorizedException {
+        String url = getRouteDetailsUrl(organizationId, applicationId, routeHash);
+
+        try (InputStream is = contrastSDK.makeRequest(HttpMethod.GET, url);
+             Reader reader = new InputStreamReader(is)) {
+            return gson.fromJson(reader, RouteDetailsResponse.class);
+        }
+    }
+
+    /**
+     * Retrieves route coverage information for an application.
+     *
+     * @param organizationId The organization ID
+     * @param appId The application ID
+     * @param metadata Optional metadata request for filtering (can be null)
+     * @return RouteCoverageResponse containing route coverage information
+     * @throws IOException If an I/O error occurs
+     * @throws UnauthorizedException If the request is not authorized
+     */
+    public RouteCoverageResponse getRouteCoverage(String organizationId, String appId,
+                                                RouteCoverageBySessionIDAndMetadataRequest metadata)
+            throws IOException, UnauthorizedException {
+
+        InputStream is = null;
+
+        try {
+            if (metadata == null) {
+                is = contrastSDK.makeRequest(
+                        HttpMethod.GET,
+                        urlBuilder.getRouteCoverageUrl(organizationId, appId));
+            } else {
+                is = contrastSDK.makeRequestWithBody(
+                        HttpMethod.POST,
+                        urlBuilder.getRouteCoverageWithMetadataUrl(organizationId, appId),
+                        gson.toJson(metadata),
+                        MediaType.JSON);
+            }
+
+            try (Reader reader = new InputStreamReader(is)) {
+                return gson.fromJson(reader, RouteCoverageResponse.class);
+            }
+        } finally {
+            if (is != null) {
+                is.close();
+            }
+        }
+    }
+
+    /**
+     * Builds URL for retrieving route details observations
+     */
+    private String getRouteDetailsUrl(String organizationId, String applicationId, String routeHash) {
+        return String.format(
+                "/ng/%s/applications/%s/route/%s/observations?expand=skip_links",
+                organizationId, applicationId, routeHash);
+    }
 }