feat: add new persistent flag: --store-upload-sbom=/path/to.json

Author: iseki0

api/sbom_commit.go

@@ -1,11 +1,15 @@
 package api
 
 import (
+	"bufio"
 	"context"
+	"encoding/json"
+	"github.com/murphysecurity/murphysec/env"
 	"github.com/murphysecurity/murphysec/model"
 	"github.com/murphysecurity/murphysec/scanerr"
 	"github.com/murphysecurity/murphysec/utils"
 	"github.com/murphysecurity/murphysec/utils/must"
+	"os"
 )
 
 func SubmitSBOM(ctx context.Context, client *Client, subtaskId string, modules []model.Module, codeFragments []model.ComponentCodeFragment) error {
@@ -17,5 +21,13 @@ func SubmitSBOM(ctx context.Context, client *Client, subtaskId string, modules [
 		"code_fragments": utils.NoNilSlice(codeFragments),
 		"scan_warnings":  scanerr.GetAll(ctx),
 	}
+	if env.StorageUploadSBom != "" {
+		var f = must.A(os.OpenFile(env.StorageUploadSBom, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, 0666))
+		var bf = bufio.NewWriter(f)
+		var encoder = json.NewEncoder(bf)
+		must.M(encoder.Encode(req))
+		must.M(bf.Flush())
+		must.M(f.Close())
+	}
 	return client.DoJson(client.PostJson(joinURL(client.baseUrl, "/platform3/v3/client/upload_data"), req), nil)
 }

cmd/murphy/root.go

@@ -57,6 +57,7 @@ func rootCmd() *cobra.Command {
 	c.PersistentFlags().StringVar(&common.CliServerAddressOverride, "server", "", "specify server address")
 	c.PersistentFlags().BoolVarP(&env.CliTlsAllowInsecure, "allow-insecure", "x", false, "Allow insecure TLS connection")
 	c.PersistentFlags().BoolVar(&env.NoWait, "no-wait", false, "do not wait scan result")
+	c.PersistentFlags().StringVar(&env.StorageUploadSBom, "store-upload-sbom", "", "")
 
 	c.AddCommand(auth.Cmd())
 	c.AddCommand(scan.Cmd())

env/common.go

@@ -25,6 +25,7 @@ var envTlsAllowInsecure bool
 var CliTlsAllowInsecure bool
 var DoNotBuild bool
 var WaitAfterScannerScan bool
+var StorageUploadSBom string
 
 func init() {
 	ctm := os.Getenv("COMMAND_TIMEOUT")