Skip to main content

The Auditree evidence removal tool

Project description

OS Compatibility Python Compatibility pre-commit Code validation Upload Python Package

auditree-prune

The Auditree evidence removal tool.

Introduction

Auditree prune is a command line tool that assists in managing evidence locker abandoned evidence. It provides a thoughtful way to remove evidence from an evidence locker while retaining the evidence metadata so that, if necessary, retrieving the removed evidence from git history is made easier. Auditree prune does this by handling the removal of the evidence file(s) from an evidence locker git repository and providing "tombstoned" metadata that can be used to map back to a point in time where the evidence still existed in the evidence locker.

Prerequisites

  • Supported for execution on OSX and LINUX.
  • Supported for execution with Python 3.6 and above.

Python 3 must be installed, it can be downloaded from the Python site or installed using your package manager.

Python version can be checked with:

python --version

or

python3 --version

The prune tool is available for download from PyPI.

Installation

It is best practice, but not mandatory, to run prune from a dedicated Python virtual environment. Assuming that you have the Python virtualenv package already installed, you can create a virtual environment named venv by executing virtualenv venv which will create a venv folder at the location of where you executed the command. Alternatively you can use the python venv module to do the same.

python3 -m venv venv

Assuming that you have a virtual environment and that virtual environment is in the current directory then to install a new instance of prune, activate your virtual environment and use pip to install prune like so:

. ./venv/bin/activate
pip install auditree-prune

As we add new features to prune you will want to upgrade your prune package. To upgrade prune to the most recent version do:

. ./venv/bin/activate
pip install auditree-prune --upgrade

See pip documentation for additional options when using pip.

Configuration

Since Auditree prune interacts with Git repositories, it requires Git remote hosting service credentials in order to do its thing. Auditree prune will by default look for a username and token in a ~/.credentials file. You can override the credentials file location by using the --creds option on a prune CLI execution. Valid section headings include github, github_enterprise, bitbucket, and gitlab. Below is an example of the expected credentials entry.

[github]
username=your-gh-username
token=your-gh-token

Execution

Auditree prune is a simple CLI that performs the function of archiving off abandoned evidence. As such, it has two execution modes; a push-remote mode and a dry-run mode. Both modes will clone a git repository and place it into the $TMPDIR/prune folder. Both modes will also provide handy progress output as prune processes the abandoned evidence. The final step in both modes is to remove the locally cloned repository from the temp directory. However, push-remote will push the changes to the remote repository before removing the locally cloned copy whereas dry-run will not.

As most CLIs, Auditree prune comes with a help facility.

prune -h
prune push-remote -h
prune dry-run -h

push-remote mode

Use the push-remote mode when you want your changes to be applied to the remote evidence locker. You can provide as many evidence path/reason for removal key/value pairs as you need as part of the --config or as contents of your --config-file.

prune push-remote https://github.com/org-foo/repo-bar --config '{"raw/foo/bar.json":"bar.json is abandoned",...}'
prune push-remote https://github.com/org-foo/repo-bar --config-file ./path/to/my/prune/evidence.json

dry-run mode

Use the dry-run mode when you want don't your changes to be applied to the remote evidence locker and are just interested in seeing what effect the execution will have on our evidence locker before you commit to pushing your changes to the remote repository. You can provide as many evidence path/reason for removal key/value pairs as you need as part of the --config or as contents of your --config-file.

prune dry-run https://github.com/org-foo/repo-bar --config '{"raw/foo/bar.json":"bar.json is abandoned",...}'
prune dry-run https://github.com/org-foo/repo-bar --config-file ./path/to/my/prune/evidence.json

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

auditree-prune-1.0.0.tar.gz (9.5 kB view details)

Uploaded Source

Built Distribution

auditree_prune-1.0.0-py2.py3-none-any.whl (12.1 kB view details)

Uploaded Python 2 Python 3

File details

Details for the file auditree-prune-1.0.0.tar.gz.

File metadata

  • Download URL: auditree-prune-1.0.0.tar.gz
  • Upload date:
  • Size: 9.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/49.2.0 requests-toolbelt/0.9.1 tqdm/4.48.0 CPython/3.8.3

File hashes

Hashes for auditree-prune-1.0.0.tar.gz
Algorithm Hash digest
SHA256 9a2a707cc618e08695944ddbd3fa5634e1f548c397c490cf364f6b54601bc0cf
MD5 4b81fb2029366ea0ab81ecf2ff3085f3
BLAKE2b-256 680eb29066af5194727b265834a6fad69d24eb004b405cfd4d25551cd090f7a2

See more details on using hashes here.

File details

Details for the file auditree_prune-1.0.0-py2.py3-none-any.whl.

File metadata

  • Download URL: auditree_prune-1.0.0-py2.py3-none-any.whl
  • Upload date:
  • Size: 12.1 kB
  • Tags: Python 2, Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/49.2.0 requests-toolbelt/0.9.1 tqdm/4.48.0 CPython/3.8.3

File hashes

Hashes for auditree_prune-1.0.0-py2.py3-none-any.whl
Algorithm Hash digest
SHA256 2c1d372edc6877a9718cb204acec0012a4394b72a0455012829dd037e26581e8
MD5 a87f437d50241f95101cafcaa302c37c
BLAKE2b-256 591aa8490efb0d58b78c1c52f210a5db730e2793c3eae9d612f12280da7ff8d5

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page