Merge pull request #87 from step-security/bug-86

Bug 86

Author: varunsh-coder

.github/workflows/codeql-analysis.yml

@@ -37,7 +37,9 @@ jobs:
         # Learn more about CodeQL language support at https://git.io/codeql-language-support
 
     steps:
-    - uses: step-security/harden-runner@917f7d59f22e82a5ddcaef409923426fd7aa6327
+    - uses: step-security/harden-runner@v1
+      with:
+        egress-policy: audit
     - name: Checkout repository
       uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5
 

.github/workflows/int.yml

@@ -13,11 +13,10 @@ jobs:
       contents: read
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@917f7d59f22e82a5ddcaef409923426fd7aa6327
+    - uses: step-security/harden-runner@v1
       with:
        allowed-endpoints: 
         api.github.com:443
-        beta.api.stepsecurity.io:443
         github.com:443
         int.api.stepsecurity.io:443
         pipelines.actions.githubusercontent.com:443

.github/workflows/release.yml

@@ -13,10 +13,9 @@ jobs:
       contents: write
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@917f7d59f22e82a5ddcaef409923426fd7aa6327
+    - uses: step-security/harden-runner@v1
       with:
         allowed-endpoints: 
-          agent.api.stepsecurity.io:443
           api.github.com:443
           github.com:443
           goreleaser.com:443

.github/workflows/scorecard-analysis.yml

@@ -22,7 +22,10 @@ jobs:
     name: Scorecard analysis
     runs-on: ubuntu-latest
     steps:
-      - uses: step-security/harden-runner@917f7d59f22e82a5ddcaef409923426fd7aa6327
+      - uses: step-security/harden-runner@v1
+        with:
+          egress-policy: audit
+      
       - name: "Checkout code"
         uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579
 

eventhandler.go

@@ -170,7 +170,9 @@ func (eventHandler *EventHandler) GetToolChain(ppid, exe string) *Tool {
 	tool := Tool{Name: filepath.Base(exe), SHA256: checksum}
 
 	// In some cases the process has already exited, so get from map first
+	eventHandler.procMutex.Lock()
 	parentProcess, found := eventHandler.ProcessMap[ppid]
+	eventHandler.procMutex.Unlock()
 
 	if found {
 		tool.Parent = eventHandler.GetToolChain(parentProcess.PPid, parentProcess.Exe)

netmon.go

@@ -2,6 +2,7 @@ package main
 
 import (
 	"context"
+	"sync"
 	"time"
 
 	"github.com/florianl/go-nflog/v2"
@@ -17,6 +18,7 @@ type NetworkMonitor struct {
 	Repo          string
 	ApiClient     *ApiClient
 	Status        string
+	netMutex      sync.RWMutex
 }
 
 var ipAddresses = make(map[string]int)
@@ -84,6 +86,7 @@ func (netMonitor *NetworkMonitor) handlePacket(attrs nflog.Attribute) {
 	if ipv4Layer := packet.Layer(layers.LayerTypeIPv4); ipv4Layer != nil {
 		// Get actual TCP data from this layer
 		ipv4, _ := ipv4Layer.(*layers.IPv4)
+		netMonitor.netMutex.Lock()
 		_, found := ipAddresses[ipv4.DstIP.String()]
 		if !found {
 			ipAddresses[ipv4.DstIP.String()] = 1
@@ -93,7 +96,7 @@ func (netMonitor *NetworkMonitor) handlePacket(attrs nflog.Attribute) {
 					ipv4.DstIP.String(), port, netMonitor.Status, timestamp, Tool{Name: Unknown, SHA256: Unknown})
 			}
 		}
-
+		netMonitor.netMutex.Unlock()
 	}
 
 }