[SOAR-18130] Orca Security - Snyk Vulnerability & SDK Bump (#2934)

* Snyk vuln and sdk bumo - orca 2.0.1 * fixing help.md * space in requirements.txt
rapid7 · Nov 7, 2024 · fe858a6 · fe858a6
1 parent 0bbd37d
commit fe858a6
Show file tree

Hide file tree

Showing 48 changed files with 1,574 additions and 2,383 deletions.
diff --git a/plugins/orca_security/.CHECKSUM b/plugins/orca_security/.CHECKSUM
@@ -1,59 +1,59 @@
 {
-	"spec": "46782aef3931f9a4eeaa1fce1208b4a9",
-	"manifest": "ad4b63850e02839049b4834728a8caf1",
-	"setup": "9408af5acf99548e6d4bb51ad4545466",
+	"spec": "2cb7c009cabb0300d82818f3621a0be9",
+	"manifest": "c40717b2a3b5277bdfc9e042cb445d2f",
+	"setup": "93400303ff4ab568b8fd6b5893288ba3",
 	"schemas": [
 		{
 			"identifier": "add_user/schema.py",
-			"hash": "783074a007783a348cdf7196168dfc00"
+			"hash": "a3b7cd2c53f712b71acad88f4bfb8b79"
 		},
 		{
 			"identifier": "delete_user/schema.py",
-			"hash": "a113969d6725459fecea5554c666102c"
+			"hash": "938cd66c33f2e6d4a71c836210f95f1e"
 		},
 		{
 			"identifier": "download_malicious_file/schema.py",
-			"hash": "ba87eee4b5b45d1ac2d46ec6e9907178"
+			"hash": "218b6c8165afbf6e2321480e43b5e5ed"
 		},
 		{
 			"identifier": "get_alert_by_id/schema.py",
-			"hash": "51bfec7d1278f653891c3d8f47b1ce7e"
+			"hash": "e45dd7f83136d80734503ae5c9367e05"
 		},
 		{
 			"identifier": "get_alerts/schema.py",
-			"hash": "db8f9a0edb29485200bddfeba5da5118"
+			"hash": "1d9bb15fee6eee037cb3ae222881c328"
 		},
 		{
 			"identifier": "get_asset_by_id/schema.py",
-			"hash": "0e36c4a950d6eae4b21067af6ae8afb6"
+			"hash": "b2b4337fa371ba8961366487c05033ce"
 		},
 		{
 			"identifier": "get_assets/schema.py",
-			"hash": "08450bce738e43db2a9194d964876930"
+			"hash": "7686f6b12accfd33fb31249ac452931c"
 		},
 		{
 			"identifier": "get_users/schema.py",
-			"hash": "afca518b43bdb2eb00ddde297db2903e"
+			"hash": "b8626de87d4e3f95ce793a0880ddd05e"
 		},
 		{
 			"identifier": "update_alert_severity/schema.py",
-			"hash": "f75f1d20d1c788172cdcce28f7bb3aa8"
+			"hash": "e5329a7ce2f892ecde67b3e135f16499"
 		},
 		{
 			"identifier": "update_alert_status/schema.py",
-			"hash": "2f784295607abfaad7608b5e5a63329f"
+			"hash": "079e2b0d030c61af2235a2ababd628e8"
 		},
 		{
 			"identifier": "verify_alert/schema.py",
-			"hash": "cdc5ac95e01f007ca96b51bdbb05e58e"
+			"hash": "ebff2295a8fa26d0780acce4968f3d99"
 		},
 		{
 			"identifier": "connection/schema.py",
-			"hash": "4aefb21370fa6ed0e2df9f45ce601657"
+			"hash": "3c3944c113d0016e2f7ac667ce07bf7d"
 		},
 		{
 			"identifier": "new_alert/schema.py",
-			"hash": "29920f00d7831cd3aa4d71a45c8efb5a"
+			"hash": "b9d92b05b3a5a317e3f2c1ac00875d0f"
 		}
 	]
 }
diff --git a/plugins/orca_security/Dockerfile b/plugins/orca_security/Dockerfile
@@ -1,26 +1,20 @@
-FROM rapid7/insightconnect-python-3-38-plugin:4
-# Refer to the following documentation for available SDK parent images: https://komand.github.io/python/sdk.html#version
+FROM --platform=linux/amd64 rapid7/insightconnect-python-3-plugin:6.2.0
 
 LABEL organization=rapid7
 LABEL sdk=python
 
-# Add any custom package dependencies here
-# NOTE: Add pip packages to requirements.txt
-
-# End package dependencies
-
-# Add source code
 WORKDIR /python/src
+
 ADD ./plugin.spec.yaml /plugin.spec.yaml
-ADD . /python/src
+ADD ./requirements.txt /python/src/requirements.txt
 
-# Install pip dependencies
 RUN if [ -f requirements.txt ]; then pip install -r requirements.txt; fi
 
-# Install plugin
+ADD . /python/src
+
 RUN python setup.py build && python setup.py install
 
 # User to run plugin code. The two supported users are: root, nobody
 USER nobody
 
-ENTRYPOINT ["/usr/local/bin/icon_orca_security"]
+ENTRYPOINT ["/usr/local/bin/icon_orca_security"]
diff --git a/plugins/orca_security/bin/icon_orca_security b/plugins/orca_security/bin/icon_orca_security
@@ -1,12 +1,12 @@
 #!/usr/bin/env python
-# GENERATED BY KOMAND SDK - DO NOT EDIT
+# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT
 import os
 import json
 from sys import argv
 
 Name = "Orca Security"
 Vendor = "rapid7"
-Version = "2.0.0"
+Version = "2.0.1"
 Description = "Orca's agentless, cloud-native security and compliance platform detects, monitors, and prioritizes the most critical cloud security risks for AWS, Azure, and Google Cloud estates"
 
 
@@ -23,7 +23,7 @@ def main():
             monkey.patch_all()
 
     import insightconnect_plugin_runtime
-    from icon_orca_security import connection, actions, triggers
+    from icon_orca_security import connection, actions, triggers, tasks
 
     class ICONOrcaSecurity(insightconnect_plugin_runtime.Plugin):
         def __init__(self):
@@ -35,29 +35,29 @@ def main():
                 connection=connection.Connection()
             )
             self.add_trigger(triggers.NewAlert())
-
-            self.add_action(actions.AddUser())
-
-            self.add_action(actions.DeleteUser())
-
-            self.add_action(actions.DownloadMaliciousFile())
-
-            self.add_action(actions.GetAlertById())
-
-            self.add_action(actions.GetAlerts())
-
-            self.add_action(actions.GetAssetById())
-
+
             self.add_action(actions.GetAssets())
-
-            self.add_action(actions.GetUsers())
-
-            self.add_action(actions.UpdateAlertSeverity())
-
+
+            self.add_action(actions.GetAssetById())
+
+            self.add_action(actions.GetAlerts())
+
+            self.add_action(actions.GetAlertById())
+
             self.add_action(actions.UpdateAlertStatus())
-
+
+            self.add_action(actions.UpdateAlertSeverity())
+
+            self.add_action(actions.DownloadMaliciousFile())
+
             self.add_action(actions.VerifyAlert())
-
+
+            self.add_action(actions.GetUsers())
+
+            self.add_action(actions.AddUser())
+
+            self.add_action(actions.DeleteUser())
+
 
     """Run plugin"""
     cli = insightconnect_plugin_runtime.CLI(ICONOrcaSecurity())