socket-basics/socket_basics/core/connector/opengrep/webhook.py at 1a4bdf17e344aeb72849a6fceac4ab35a7c56831 · SocketDev/socket-basics · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
#!/usr/bin/env python3
"""
Webhook notifier for OpenGrep results.
Formats results for generic webhook consumption with flexible structured format.
"""

from pathlib import Path
from typing import Dict, Any, List


def format_notifications(groups: Dict[str, List[Dict[str, Any]]]) -> List[Dict[str, Any]]:
    """Format for generic webhook - return multiple flexible structured datasets grouped by subtype."""
    tables = []

    # Map subtypes to friendly display names
    subtype_names = {
        'sast-python': 'SAST Python',
        'sast-javascript': 'SAST JavaScript',
        'sast-golang': 'SAST Go',
        'sast-java': 'SAST Java',
        'sast-php': 'SAST PHP',
        'sast-ruby': 'SAST Ruby',
        'sast-csharp': 'SAST C#',
        'sast-dotnet': 'SAST .NET',
        'sast-c': 'SAST C',
        'sast-cpp': 'SAST C++',
        'sast-kotlin': 'SAST Kotlin',
        'sast-scala': 'SAST Scala',
        'sast-swift': 'SAST Swift',
        'sast-rust': 'SAST Rust',
        'sast-elixir': 'SAST Elixir',
        'sast-generic': 'SAST Generic'
    }

    for subtype, items in groups.items():
        if not items:  # Skip empty groups
            continue

        rows = []
        findings: List[Dict[str, Any]] = []
        for item in items:
            c = item['component']
            a = item['alert']
            props = a.get('props', {}) or {}
            full_path = props.get('filePath', a.get('location', {}).get('path')) or '-'

            try:
                file_name = Path(full_path).name
            except Exception:
                file_name = full_path

            rule = props.get('ruleId', a.get('title', ''))
            severity = a.get('severity', '')
            lines = f"{props.get('startLine','')}-{props.get('endLine','')}"

            rows.append([
                rule,
                severity,
                file_name,
                full_path,
                lines,
                props.get('codeSnippet', '') or '',
                subtype,
                'opengrep'
            ])

            findings.append({
                'rule': rule,
                'severity': severity,
                'file': file_name,
                'path': full_path,
                'lines': lines,
                'language': subtype,
                'scanner': 'opengrep',
            })

        # Create a separate dataset for each subtype/language group
        display_name = subtype_names.get(subtype, subtype.upper())
        headers = ['Rule', 'Severity', 'File', 'Path', 'Lines', 'Code', 'SubType', 'Scanner']
        header_row = ' | '.join(headers)
        separator_row = ' | '.join(['---'] * len(headers))
        content_rows = []
        for row in rows:
            content_rows.append(' | '.join(str(cell) for cell in row))

        content = '\n'.join([header_row, separator_row] + content_rows) if rows else f"No {display_name} issues found."

        tables.append({
            'title': display_name,
            'content': content,
            'findings': findings,
        })

    # Return list of tables - one per language group
    return tables