summaryrefslogtreecommitdiff
path: root/scripts/ingest-reports-to-siem-devo
blob: 0645d778217838f33d3feb02903e51dcb6a3abac (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
#!/usr/bin/env node

const { S3Client, PutObjectCommand } = require('@aws-sdk/client-s3')
const { fromIni } = require('@aws-sdk/credential-provider-ini')
const path = require('path')
const fs = require('fs')
const crypto = require('crypto')

function getMD5HashFromFile(data) {
  const hash = crypto.createHash('md5').update(data).digest('base64')
  return hash
}

(async function () {
  const s3Client = new S3Client({
    region: 'us-east-2',
    credentials: fromIni({ profile: 'gl-logs-for-panther' }),
  })
  try {
    const file = 'gl-dependency-scanning-report.json'
    const data = fs.readFileSync(file)

    const [filename, fileext] = path.basename(file).split('.')
    const uniqueId = process.env['CI_PIPELINE_ID'] && process.env['CI_JOB_ID'] ?
                  process.env['CI_PIPELINE_ID'] + '-' + process.env['CI_JOB_ID'] :
                  Date.now()
    const key = path.join('package_hunter_logs', filename + '-' + uniqueId + '.' + fileext)

    const responseData = await s3Client.send(
      new PutObjectCommand({
        Bucket: 'package-hunter-logs',
        Key: key,
        Body: data,
        ContentMD5: getMD5HashFromFile(data),
      }),
    )
    console.log('Successfully uploaded %s to %s', file, key)
  } catch (err) {
    if (err.name === 'CredentialsProviderError' || err.name === 'AuthorizationHeaderMalformed')
      console.log('Could not upload the report. Are AWS credentials configured in ~/.aws/credentials?')
    else 
      console.log('Unexpected error during upload: ', err.message)
      process.exit(1)
  }
})()