updated the queries to find app by appname and get all apps to use a caching mechanism to speed up the response.

JoeBeeContrast · JoeBeeContrast · commit b215a37841f4 · 2025-06-16T16:50:20.000+01:00
diff --git a/src/main/java/com/contrast/labs/ai/mcp/contrast/ADRService.java b/src/main/java/com/contrast/labs/ai/mcp/contrast/ADRService.java
@@ -58,7 +58,7 @@ public ProtectData getProtectData(String applicationName) throws IOException {
 
             // Get application ID from name
             logger.debug("Looking up application ID for name: {}", applicationName);
-            String appID = SDKHelper.getAppIDFromapp_name(applicationName, orgID, contrastSDK);
+            String appID = SDKHelper.getAppIDFromName(applicationName, orgID, contrastSDK);
             if (appID == null || appID.isEmpty()) {
                 logger.warn("No application ID found for application: {}", applicationName);
                 return null;
diff --git a/src/main/java/com/contrast/labs/ai/mcp/contrast/AssessService.java b/src/main/java/com/contrast/labs/ai/mcp/contrast/AssessService.java
@@ -102,7 +102,7 @@ public Vulnerability getVulnerabilityById(String vulnID, String appID) throws IO
             List<LibraryExtended> libs = SDKHelper.getLibsForID(appID,orgID, new SDKExtension(contrastSDK));
             List<LibraryLibraryObservation> lobs = new ArrayList<>();
             for(LibraryExtended lib : libs) {
-                LibraryLibraryObservation llob = new LibraryLibraryObservation(lib,new SDKExtension(contrastSDK).getLibraryObservations(orgID,appID,lib.getHash(),50));
+                LibraryLibraryObservation llob = new LibraryLibraryObservation(lib, SDKHelper.getLibraryObservationsWithCache(lib.getHash(), appID, orgID, 50,new SDKExtension(contrastSDK)));
                 lobs.add(llob);
             }
             List<StackLib> stackLibs = new ArrayList<>();
@@ -157,7 +157,7 @@ public Vulnerability getVulnerability(String vulnID, String app_name) throws IOE
         Optional<String> appID = Optional.empty();
         logger.debug("Searching for application ID matching name: {}", app_name);
 
-        for(Application app : contrastSDK.getApplications(orgID).getApplications()) {
+        for(Application app : SDKHelper.getApplicationsWithCache(orgID, contrastSDK)) {
             if(app.getName().toLowerCase().contains(app_name.toLowerCase())) {
                 appID = Optional.of(app.getId());
                 logger.debug("Found matching application - ID: {}, Name: {}", app.getId(), app.getName());
@@ -176,7 +176,6 @@ public Vulnerability getVulnerability(String vulnID, String app_name) throws IOE
     public List<VulnLight> listVulnsByAppId(String appID) throws IOException {
         logger.info("Listing vulnerabilities for application ID: {}", appID);
         ContrastSDK contrastSDK = SDKHelper.getSDK(hostName, apiKey, serviceKey, userName);
-        
         try {
             List<Trace> traces = contrastSDK.getTraces(orgID, appID, new TraceFilterBody()).getTraces();
             logger.debug("Found {} vulnerability traces for application ID: {}", traces.size(), appID);
@@ -203,7 +202,7 @@ public List<VulnLight> listVulnsInAppByName(String app_name) throws IOException
         Optional<String> appID = Optional.empty();
         logger.debug("Searching for application ID matching name: {}", app_name);
         
-        for(Application app : contrastSDK.getApplications(orgID).getApplications()) {
+        for(Application app : SDKHelper.getApplicationsWithCache(orgID, contrastSDK)) {
             if(app.getName().toLowerCase().contains(app_name.toLowerCase())) {
                 appID = Optional.of(app.getId());
                 logger.debug("Found matching application - ID: {}, Name: {}", app.getId(), app.getName());
@@ -225,11 +224,11 @@ public List<VulnLight> listVulnsInAppByName(String app_name) throws IOException
 
 
     @Tool(name = "list_applications", description = "Takes an application name (app_name) returns a list of active applications matching that name. Please remember to display the name, status and ID.")
-    public List<ApplicationData> getActiveApplications(String app_name) throws IOException {
+    public List<ApplicationData> getApplications(String app_name) throws IOException {
         logger.info("Listing active applications matching name: {}", app_name);
         ContrastSDK contrastSDK = SDKHelper.getSDK(hostName, apiKey, serviceKey, userName);
         try {
-            List<Application> applications = contrastSDK.getApplications(orgID).getApplications();
+            List<Application> applications = SDKHelper.getApplicationsWithCache(orgID, contrastSDK);
             logger.debug("Retrieved {} total applications from Contrast", applications.size());
             
             List<ApplicationData> filteredApps = new ArrayList<>();
@@ -255,16 +254,16 @@ public List<ApplicationData> getActiveApplications() throws IOException {
         logger.info("Listing all applications");
         ContrastSDK contrastSDK = SDKHelper.getSDK(hostName, apiKey, serviceKey, userName);
         try {
-            List<Application> applications = contrastSDK.getApplications(orgID).getApplications();
+            List<Application> applications = SDKHelper.getApplicationsWithCache(orgID, contrastSDK);
             logger.debug("Retrieved {} total applications from Contrast", applications.size());
             
-            List<ApplicationData> ReturnedApps = new ArrayList<>();
+            List<ApplicationData> returnedApps = new ArrayList<>();
             for(Application app : applications) {
-                ReturnedApps.add(new ApplicationData(app.getName(), app.getStatus(), app.getId()));
+                returnedApps.add(new ApplicationData(app.getName(), app.getStatus(), app.getId()));
             }
             
-            logger.info("Found {} applications matching'", ReturnedApps.size());
-            return ReturnedApps;
+            logger.info("Found {} applications", returnedApps.size());
+            return returnedApps;
 
         } catch (Exception e) {
             logger.error("Error listing all applications", e);
diff --git a/src/main/java/com/contrast/labs/ai/mcp/contrast/SCAService.java b/src/main/java/com/contrast/labs/ai/mcp/contrast/SCAService.java
@@ -76,7 +76,7 @@ public List<LibraryExtended> getApplicationLibraries(String app_name) throws IOE
         Optional<String> appID = Optional.empty();
         logger.debug("Searching for application ID matching name: {}", app_name);
         
-        for(Application app : contrastSDK.getApplications(orgID).getApplications()) {
+        for(Application app : SDKHelper.getApplicationsWithCache(orgID, contrastSDK)) {
             if(app.getName().toLowerCase().contains(app_name.toLowerCase())) {
                 appID = Optional.of(app.getId());
                 logger.info("Found matching application - ID: {}, Name: {}", app.getId(), app.getName());
diff --git a/src/main/java/com/contrast/labs/ai/mcp/contrast/sdkexstension/SDKHelper.java b/src/main/java/com/contrast/labs/ai/mcp/contrast/sdkexstension/SDKHelper.java
@@ -47,17 +47,17 @@ public class SDKHelper {
             .maximumSize(100)
             .expireAfterWrite(5, TimeUnit.MINUTES)
             .build();
-
-    private static final Cache<String, String> appIDCache = CacheBuilder.newBuilder()
-            .maximumSize(100)
-            .expireAfterWrite(10, TimeUnit.MINUTES)
-            .build();
             
     private static final Cache<String, List<LibraryObservation>> libraryObservationsCache = CacheBuilder.newBuilder()
             .maximumSize(5000)
             .expireAfterWrite(60, TimeUnit.MINUTES)
             .build();
 
+    private static final Cache<String, List<Application>> applicationsCache = CacheBuilder.newBuilder()
+            .maximumSize(5000)
+            .expireAfterWrite(60, TimeUnit.MINUTES)
+            .build();
+
     public static List<LibraryExtended> getLibsForID(String appID, String orgID, SDKExtension extendedSDK) throws IOException {
         // Check cache for existing result
         List<LibraryExtended> cachedLibraries = libraryCache.getIfPresent(appID);
@@ -90,30 +90,21 @@ public static List<LibraryExtended> getLibsForID(String appID, String orgID, SDK
         return libs;
     }
 
-    public static String getAppIDFromapp_name(String app_name, String orgID, ContrastSDK contrastSDK) throws IOException {
-        // Check cache for existing result
-        String cachedAppID = appIDCache.getIfPresent(app_name);
-        if (cachedAppID != null) {
-            logger.info("Cache hit for application name: {}", app_name);
-            return cachedAppID;
-        }
+    public static String getAppIDFromName(String app_name, String orgID, ContrastSDK contrastSDK) throws IOException {
         logger.debug("Cache miss for application name: {}, searching for application ID", app_name);
         Optional<String> appID = Optional.empty();
-        for (Application app : contrastSDK.getApplications(orgID).getApplications()) {
+        for (Application app : getApplicationsWithCache(orgID, contrastSDK)) {
             if (app.getName().toLowerCase().contains(app_name.toLowerCase())) {
                 appID = Optional.of(app.getId());
                 logger.info("Found matching application - ID: {}, Name: {}", app.getId(), app.getName());
                 break;
             }
         }
-
         if (appID.isPresent()) {
-            // Store result in cache
-            appIDCache.put(app_name, appID.get());
             return appID.get();
         } else {
-            logger.error("Application not found: {}", app_name);
-            throw new IOException("Application not found");
+            logger.warn("No application found with name: {}", app_name);
+            return null;
         }
     }
 
@@ -174,8 +165,36 @@ public static ContrastSDK getSDK(String hostName, String apiKey, String serviceK
                 .withApiUrl( "https://" + hostName + "/Contrast/api")
                 .withUserAgentProduct(UserAgentProduct.of(MCP_SERVER_NAME,MCP_VERSION))
                 .build();
-
     }
 
+    /**
+     * Retrieves all applications from Contrast with caching.
+     *
+     * @param orgId The organization ID
+     * @param contrastSDK The Contrast SDK instance
+     * @return List of applications
+     * @throws IOException If an I/O error occurs
+     */
+    public static List<Application> getApplicationsWithCache(String orgId, ContrastSDK contrastSDK) throws IOException {
+        // Generate cache key based on organization ID
+        String cacheKey = String.format("applications:%s", orgId);
+
+        // Check cache for existing result
+        List<Application> cachedApplications = applicationsCache.getIfPresent(cacheKey);
+        if (cachedApplications != null) {
+            logger.info("Cache hit for applications in org: {}", orgId);
+            return cachedApplications;
+        }
 
+        logger.info("Cache miss for applications in org: {}, fetching from API", orgId);
+        List<Application> applications = contrastSDK.getApplications(orgId).getApplications();
+
+        logger.info("Successfully retrieved {} applications from organization: {}",
+                applications.size(), orgId);
+
+        // Store result in cache
+        applicationsCache.put(cacheKey, applications);
+
+        return applications;
+    }
 }
