updates

2025-12-01 06:50:10 +02:00
parent 91f51bc6fe
commit 62c1fe5951
4682 changed files with 544807 additions and 31208 deletions
--- a/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/init.py
+++ b/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/init.py
--- a/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/pycache/init.cpython-312.pyc
+++ b/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/pycache/init.cpython-312.pyc
--- a/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/pycache/zero_five.cpython-312.pyc
+++ b/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/pycache/zero_five.cpython-312.pyc
--- a/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/zero_five.py
+++ b/Backend/venv/lib/python3.12/site-packages/safety/formatters/schemas/zero_five.py
@@ -0,0 +1,95 @@
+from typing import List, Tuple
+
+from marshmallow import Schema, fields as fields_, post_dump
+
+
+from importlib.metadata import version as dep_version
+from packaging import version
+
+marshmallow_version = version.parse(dep_version("marshmallow"))
+
+if marshmallow_version >= version.parse("4.0.0"):
+    POST_DUMP_KWARGS = {"pass_collection": True}
+else:
+    POST_DUMP_KWARGS = {"pass_many": True}
+
+post_dump_with_kwargs = lambda fn: post_dump(fn, **POST_DUMP_KWARGS)  # noqa: E731
+
+
+class CVSSv2(Schema):
+    """
+    Schema for CVSSv2 data.
+
+    Attributes:
+        base_score (fields_.Int): Base score of the CVSSv2.
+        impact_score (fields_.Int): Impact score of the CVSSv2.
+        vector_string (fields_.Str): Vector string of the CVSSv2.
+    """
+
+    base_score = fields_.Int()
+    impact_score = fields_.Int()
+    vector_string = fields_.Str()
+
+    class Meta(Schema.Meta):
+        ordered = True
+
+
+class CVSSv3(Schema):
+    """
+    Schema for CVSSv3 data.
+
+    Attributes:
+        base_score (fields_.Int): Base score of the CVSSv3.
+        base_severity (fields_.Str): Base severity of the CVSSv3.
+        impact_score (fields_.Int): Impact score of the CVSSv3.
+        vector_string (fields_.Str): Vector string of the CVSSv3.
+    """
+
+    base_score = fields_.Int()
+    base_severity = fields_.Str()
+    impact_score = fields_.Int()
+    vector_string = fields_.Str()
+
+    class Meta(Schema.Meta):
+        ordered = True
+
+
+class VulnerabilitySchemaV05(Schema):
+    """
+    Legacy JSON report schema used in Safety 1.10.3.
+
+    Attributes:
+        package_name (fields_.Str): Name of the vulnerable package.
+        vulnerable_spec (fields_.Str): Vulnerable specification of the package.
+        version (fields_.Str): Version of the package.
+        advisory (fields_.Str): Advisory details for the vulnerability.
+        vulnerability_id (fields_.Str): ID of the vulnerability.
+        cvssv2 (Optional[CVSSv2]): CVSSv2 details of the vulnerability.
+        cvssv3 (Optional[CVSSv3]): CVSSv3 details of the vulnerability.
+    """
+
+    package_name = fields_.Str()
+    vulnerable_spec = fields_.Str()
+    version = fields_.Str(attribute="pkg.version")
+    advisory = fields_.Str()
+    vulnerability_id = fields_.Str()
+    cvssv2 = fields_.Nested(CVSSv2, attribute="severity.cvssv2")
+    cvssv3 = fields_.Nested(CVSSv3, attribute="severity.cvssv3")
+
+    class Meta(Schema.Meta):
+        ordered = True
+
+    @post_dump_with_kwargs
+    def wrap_with_envelope(self, data, many, **kwargs) -> List[Tuple]:
+        """
+        Wraps the dumped data with an envelope.
+
+        Args:
+            data (List[Dict[str, Any]]): The data to be wrapped.
+            many (bool): Indicates if multiple objects are being dumped.
+            **kwargs (Any): Additional keyword arguments.
+
+        Returns:
+            List[Tuple]: The wrapped data.
+        """
+        return [tuple(d.values()) for d in data]