Suppresses Security Hub findings based on configuration placed in DynamoDB.
Reason this release was yanked:
scoped token creation release
Project description
Suppresses Security Hub findings based on configuration placed in DynamoDB.
Documentation: https://securityhubsuppressorlib.readthedocs.org/en/latest
Development Workflow
The workflow supports the following steps
lint
test
build
document
upload
graph
These actions are supported out of the box by the corresponding scripts under _CI/scripts directory with sane defaults based on best practices. Sourcing setup_aliases.ps1 for windows powershell or setup_aliases.sh in bash on Mac or Linux will provide with handy aliases for the shell of all those commands prepended with an underscore.
The bootstrap script creates a .venv directory inside the project directory hosting the virtual environment. It uses pipenv for that. It is called by all other scripts before they do anything. So one could simple start by calling _lint and that would set up everything before it tried to actually lint the project
Once the code is ready to be delivered the _tag script should be called accepting one of three arguments, patch, minor, major following the semantic versioning scheme. So for the initial delivery one would call
$ _tag –minor
which would bump the version of the project to 0.1.0 tag it in git and do a push and also ask for the change and automagically update HISTORY.rst with the version and the change provided.
So the full workflow after git is initialized is:
repeat as necessary (of course it could be test - code - lint :) )
code
lint
test
commit and push
develop more through the code-lint-test cycle
tag (with the appropriate argument)
build
upload (if you want to host your package in pypi)
document (of course this could be run at any point)
Important Information
This template is based on pipenv. In order to be compatible with requirements.txt so the actual created package can be used by any part of the existing python ecosystem some hacks were needed. So when building a package out of this do not simple call
$ python setup.py sdist bdist_egg
as this will produce an unusable artifact with files missing. Instead use the provided build and upload scripts that create all the necessary files in the artifact.
Project Features
TODO
History
0.0.1 (05-05-2022)
First code creation
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file securityhubsuppressorlib-0.0.0.tar.gz.
File metadata
- Download URL: securityhubsuppressorlib-0.0.0.tar.gz
- Upload date:
- Size: 51.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/1.13.0 pkginfo/1.8.2 requests/2.27.1 setuptools/62.1.0 requests-toolbelt/0.9.1 tqdm/4.64.0 CPython/3.7.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 9ceb528419f223905acc8095f94125384526bad2f4670e3b6571e36cfc1ee498 |
|
| MD5 | 9a7cdddba57b388b4f5ff6e802b84aa6 |
|
| BLAKE2b-256 | da5e13d1cac2999c8838053c696a4c7ebb0ecde9a84f8afa4beb933eef5d8343 |
File details
Details for the file securityhubsuppressorlib-0.0.0-py3.7.egg.
File metadata
- Download URL: securityhubsuppressorlib-0.0.0-py3.7.egg
- Upload date:
- Size: 30.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/1.13.0 pkginfo/1.8.2 requests/2.27.1 setuptools/62.1.0 requests-toolbelt/0.9.1 tqdm/4.64.0 CPython/3.7.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | a92d9a038d464f546751228d49e4e4204d9343553f732a18fb29d36b0b3aadba |
|
| MD5 | e8c3aca3ffd1405dc6a8929ca83f57a6 |
|
| BLAKE2b-256 | 04163d4833d32a6ce5ada47708c551acc901f7b0af53ce6f391945f50fc58bf0 |
