nzdZddlmZddlmZddlmZddlZddlmZddl m Z ddl m Z dd l m Z dd lmZdd lmZdd lmZdd lmZdj'ej(Ze j,e j.j0e j2Gdde j4ZGddeZy)zFImplements the command to list vulnerabilities from Artifact Registry.)absolute_import)division)unicode_literalsN) exceptions) GetLatestScan)GetVulnerabilities)base) docker_util) endpoint_util)flags) format_utilaA table[box, title="%TITLE%"]( occurrence.vulnerability.shortDescription:label=CVE, occurrence.vulnerability.effectiveSeverity:label=EFFECTIVE_SEVERITY, occurrence.vulnerability.cvssScore:label=CVSS:sort=-1:reverse, occurrence.vulnerability.packageIssue.fixAvailable:label=FIX_AVAILABLE, occurrence.vulnerability.vexAssessment.state:label=VEX_STATUS, occurrence.vulnerability.packageIssue.affectedPackage:sort=3:label=PACKAGE, occurrence.vulnerability.packageIssue.packageType:label=PACKAGE_TYPE, vexScope, {} ) c<eZdZdZdddZedZdZdZdZ y ) ListzMCommand for listing vulnerabilities. To see all fields, use --format=json. z {description}z To list vulnerabilities for an artifact, run: $ {command} us-east1-docker.pkg.dev/project123/repository123/someimage@sha256:49765698074d6d7baa82f ) DESCRIPTIONEXAMPLESctjj|tjj|tjj||j j dgy)Nz%occurrence.vulnerability.packageIssue)r GetListURIArg AddToParserGetOptionalAALocationFlag&GetVulnerabilitiesOccurrenceFilterFlag display_info AddFlatten)parsers -lib/surface/artifacts/vulnerabilities/list.pyArgsz List.Args>sb %%f- ##%11&9 002>>vF ""$K#LM c|j}|j}|j|j\}}t j |5|dj ||}t||}t|||}ddd|j|t}g}t|dkriS|D]} d} | jr~| jjrh| jjjrH| jjjjd} | dj!drd} nd} |j#t%| | |S#1swYxYw) Nz{}/locations/{}/zimage-IMAGEDIGEST)locationoccurrence_filter replaceTagsURIr WithRegionformatrrsetTitlelistlen vulnerability vexAssessmentnoteNamesplit startswithappendVulnerabilityEntry) selfargsr$r%resourceproject latest_scan occurrencesresultsocc vex_scopetokenss rRunzList.RunFsE}}H..((2Hg  ! !( +  #**7H=!'84k&w:KLk ,  MM$ ${#KG ;! ii  ----66""0099??D ":  *)) nn'Y78 N/ , +s .E!!E*c H|}|jdsdj|}tjtj |}|r4|dd}d|ddv}|rt j |\}}}t j|\}}|rt j|jj|jj|jjdj|jj|jj}|j} dj|j} tjtj | |d}|| fStj dj|)Nzhttps://z https://{}rzgcr.iorz{}/{}zReceived invalid URI {})r1r)refindallr DOCKER_URI_REGEXConvertGCRImageStringDockerUrlToVersionGcrDockerVersion docker_repor7GetDockerStringreplacereposub ar_exceptionsInvalidInputValueError) r4 original_uri updated_urifoundresource_uri_stris_gcr_imageversionr7docker_html_str_digests rr&zList.replaceTagscs{K  ! !* - '' 4k JJ{33[ AE q!58A;&f !,!B!B " !Q#556FGneW ..    % %  # # % - -!!113%%**%%--    g+2273J3J3LMFF  & &  k ' !!  . .!((6 rcd}|r"|j|jjd}n*|jjdd}dj|}tj d|}|j j |y)NrzScan status unknownizLatest scan was at {}z%TITLE%) discovery lastScanTimer)DEFAULT_LIST_FORMATrHGetDisplayInfo AddFormat)r4r5r8titlelast_scan_time list_formats rr*z List.setTitles~ E   (  - - 5#e",,99$3?n%,,^r&r*rrrr/s<% -  :#J 1rrc6eZdZdZdZedZedZy)r3zHolder for an entry of vulnerability list results. Properties: occurrence: Vulnerability occurrence. vex_scope: Scope of the VEX statement. c ||_||_yN) _occurrence _vex_scope)r4 occurrencer<s r__init__zVulnerabilityEntry.__init__s!DDOrc|jSrh)rir4s rrkzVulnerabilityEntry.occurrences   rc|jSrh)rjrns rr<zVulnerabilityEntry.vex_scopes ??rN)r_r`rarbrlpropertyrkr<rerrr3r3s4     rr3)rb __future__rrrr@ googlecloudsdk.api_lib.artifactsrrK0googlecloudsdk.api_lib.artifacts.vulnerabilitiesrrgooglecloudsdk.callioper $googlecloudsdk.command_lib.artifactsr r r r r)"CONTAINER_ANALYSIS_METADATA_FORMATrY ReleaseTracks ReleaseTrackGADefaultUniverseOnly ListCommandrobjectr3rerrr}sM&' HJO(<>6<  {==>D%%(()c14  c1*c1Lr