ibm-cloud-security-advisor-test
Advanced tools
This repository contains the released python client SDK for IBM Cloud Security Advisor Findings and Notifications APIs . Check out below for more details.
Support for Python versions 2.x and versions <= 3.4 is deprecated and will be officially dropped in the next major release, which is expected to be end of December, 2019. Refer https://github.com/IBM/python-sdk-core
The ibm_cloud_security_advisor allows developers to programmatically interact with the ibm cloud security advisor findings and notifications api
To install, use pip or easy_install:
pip install --upgrade "ibm_cloud_security_advisor>=1.0.0"
or
easy_install --upgrade " ibm_cloud_security_advisor>=1.0.0"
ibm_cloud_security_advisor uses token-based Identity and Access Management (IAM) authentication.
IAM authentication uses a service API key to get an access token that is passed with the call. Access tokens are valid for a limited amount of time and must be regenerated.
To provide credentials to the SDK, you supply either an IAM service API key or an access token:
Generating bearer tokens using the IAM API key and Supplying the access token sectionfrom ibm_cloud_security_advisor import FindingsApiV1
from ibm_cloud_sdk_core.authenticators import IAMAuthenticator
authenticator = IAMAuthenticator('apikey')
findings_service = FindingsApiV1(authenticator=authenticator)
from ibm_cloud_sdk_core.authenticators import IAMAuthenticator
# In your API endpoint use this to generate new bearer tokens
iam_token_manager = IAMAuthenticator('<apikey>')
token = iam_token_manager.get_token()
#FINDINGS
from ibm_cloud_security_advisor import FindingsApiV1
from ibm_cloud_sdk_core.authenticators import BearerTokenAuthenticator
# in the constructor, assuming control of managing the token
authenticator = BearerTokenAuthenticator('your token')
findings_service = FindingsApiV1(authenticator=authenticator)
#NOTIFICATIONS
from ibm_cloud_security_advisor import NotificationsApiV1
from ibm_cloud_sdk_core.authenticators import BearerTokenAuthenticator
# in the constructor, assuming control of managing the token
authenticator = BearerTokenAuthenticator('your token')
notifications_service = NotificationsApiV1(authenticator=authenticator)
The ibm_cloud_security_advisor Python SDK supports only synchronous (blocking) execution of service methods. The return value from all service methods is a DetailedResponse object. Use this SDK to perform the basic ibm_cloud_security_advisor creation operation as follows, with the installation and initialization instructions from above:
#Findings
from ibm_cloud_security_advisor import FindingsApiV1
from ibm_cloud_sdk_core.authenticators import IAMAuthenticator
authenticator = IAMAuthenticator('your apikey')
ibm_cloud_security_advisor_findings_service = FindingsApiV1(authenticator=authenticator)
response = ibm_cloud_security_advisor_findings_service.<Method here<>>
print(response)
#Notifications
from ibm_cloud_security_advisor import NotificationsApiV1
from ibm_cloud_sdk_core.authenticators import IAMAuthenticator
authenticator = IAMAuthenticator('your apikey')
ibm_cloud_security_advisor_notifications_service = NotificationsApiV1(authenticator=authenticator)
response = ibm_cloud_security_advisor_notifications_service.<Method here<>>
print(response)
This would give an output of DetailedResponse from which you can use the get_result(), get_headers(), and get_status_code() to return the result, headers, and status code respectively.
Custom headers can be passed in any request in the form of a dict as:
headers = {
'Custom-Header': 'custom_value'
}
For example, to send a header called Custom-Header to a call in ibm_security_advisor_findings_api_sdk, pass the headers parameter as:
from ibm_cloud_security_advisor import FindingsApiV1
from ibm_cloud_sdk_core.authenticators import IAMAuthenticator
authenticator = IAMAuthenticator('your apikey')
ibm_security_advisor_findings_api_sdk_service = FindingsApiV1(authenticator=authenticator)
response = ibm_security_advisor_findings_api_sdk_service.<<METHOD HERE>>(headers={'Custom-Header': 'custom_value'}).get_result()
The ibm_cloud_security_advisor Python SDK generates an exception for any unsuccessful method invocation.
If the method receives an error response from an API call to the service, it will generate an
ApiException with the following fields.
| NAME | DESCRIPTION |
|---|---|
| code | The HTTP response code that is returned. |
| message | A message that describes the error. |
| info | A dictionary of additional information about the error. |
ApiException can be handled this way.
from ibm_cloud_sdk_core.api_exception import ApiException
try:
response = ibm_cloud_security_advisor_findings_service.create_note(
account_id="<<Account ID here>>",
**data
)
except ApiException as err:
try:
# err.code gives status code
excep_resp = err.http_response.json()
print(excep_resp)
except:
print(err)
excep_resp would be-
{
"detail": "Document already exists: abc/providers/sdktest/notes/sdk_note_id1",
"instance": "abc/providers/sdktest/notes/sdk_note_id1",
"status": 409,
"title": "Conflict",
"type": "about:blank"
}
By default, error log level is disabled, so user will not see any error/exception logged by logger.error and logger.exception but will see other error/exception.
To enable it, user can pass enable_error_log=True .
ibm_cloud_security_advisor_findings_service =FindingsApiV1(authenticator=authenticator,enable_error_log=True)
| Example | http method |
|---|---|
| post_graph | POST /v1/{account_id}/graph |
| list_providers | GET /v1/{account_id}/providers |
| create_finding | POST /v1/{account_id}/providers/{provider_id}/notes |
| create_card | POST /v1/{account_id}/providers/{provider_id}/notes |
| create_note_with_kpi | POST /v1/{account_id}/providers/{provider_id}/notes |
| create_note_with_reporter | POST /v1/{account_id}/providers/{provider_id}/notes |
| create_note_with_section | POST /v1/{account_id}/providers/{provider_id}/notes |
| list_notes | GET /v1/{account_id}/providers/{provider_id}/notes |
| delete_note | DELETE /v1/{account_id}/providers/{provider_id}/notes/{note_id} |
| create_occurrence | POST /v1/{account_id}/providers/{provider_id}/occurrences |
| create_occurrence_with_context | POST /v1/{account_id}/providers/{provider_id}/occurrences |
| create_occurrence_with_kpi | POST /v1/{account_id}/providers/{provider_id}/occurrences |
| list_occurrences | GET /v1/{account_id}/providers/{provider_id}/occurrences |
| delete_occurrence | DELETE /v1/{account_id}/providers/{provider_id}/occurrences/{occurrence_id} |
| list_note_occurrences | GET /v1/{account_id}/providers/{provider_id}/notes/{note_id}/occurrences |
| Example | http method |
|---|---|
| create channel | POST /v1/{account_id}/notifications/channels |
| list channels | GET /v1/{account_id}/notifications/channels |
| get channel | GET /v1/{account_id}/notifications/channels/{channel_id} |
| delete bulk channels | DELETE /v1/{account_id}/notifications/channels |
| delete channel | DELETE /v1/{account_id}/notifications/channels/{channel_id} |
| update channel | PUT /v1/{account_id}/notifications/channels/{channel_id} |
| test channel | GET /v1/{account_id}/notifications/channels/{channel_id}/test |
| get public key | GET /v1/{account_id}/notifications/public_key |
See Findings API doc.
See Notifications API doc.
To run pytest, create virtual env and then run. Otherwise you might see below error
issue - https://github.com/pytest-dev/pytest/issues/2287
Traceback:
test/integration/test_note.py:26: in <module>
from ibm_cloud_security_advisor import FindingsApiV1
ModuleNotFoundError: No module named 'ibm_cloud_security_advisor'
python3 -m venv env #(for python3)
source env/bin/activate
cd ibm-coud-security-advisor-sdk-python
pip install -r requirements-dev.txt
API_KEY has enough permission to perform findings api operations.
export API_KEY=<YOUR_API_KEY>
export ACCOUNT_ID=<YOUR_ACCOUNT_ID>
export FINDING_API_ENDPOINT=<FINDING_API_ENDPOINT>
export NOTIFICATION_API_ENDPOINT=<NOTIFICATION_API_ENDPOINT>
#optional. Use it for dev/preprod iam endpoint
export IAM_ENDPOINT= <IAM_ENDPOINT>
/integration/input/cred/ibm-credentials.env file or export your own .env credential file with full path including filename. export IBM_CREDENTIALS_FILE= <file_path>
python -m pytest test/integration --html=report.html --json-report --json-report-summary
Once run is completed, html report and .report.json will be generated in the same directory and it will look like this
The ibm_cloud_security_advisor Python SDK is released under the Apache 2.0 license. The license's full text can be found in LICENSE.
FAQs
Test SDK
We found that ibm-cloud-security-advisor-test demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.