Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Support : IAST Scheduling & IAST Scan Ignore #320

Merged
merged 31 commits into from
Sep 12, 2024
Merged

Feature Support : IAST Scheduling & IAST Scan Ignore #320

merged 31 commits into from
Sep 12, 2024

Conversation

lovesh-ap
Copy link
Contributor

@lovesh-ap lovesh-ap commented Aug 20, 2024
edited
Loading

IAST Scheduling
Schedule IAST, which will allow users to schedule the startup and scanning of IAST and duration will grant them capability to set run duration of the IAST scan in minutes.

scan_schedule:
     delay: 30			  #In minutes, default is 0 min
     duration: 300		  #In minutes, default will be forever
     schedule: “0 0 * * * ?” #delay takes precedence over schedule
     allow_iast_sample_collection: false #default is false

Ignore IAST Scan, feature allows users to ignore the scanning of certain APIs, categories, or parameters based on their configuration.

skip_iast_scan:
    api:
      - \/api\/v1\/login.*
      - \/api\/v1\/.*?update.*
    parameters:
      header: ["X-Forwaded-For"]
      query: ["count"]
      body: ["object.cc_number"]
    iast_detection_category:
      insecure_settings: false
      invalid_file_access: false
      sql_injection: false
      nosql_injection: false
      ldap_injection: false
      javascript_injection: false
      command_injection: false
      xpath_injection:false
      ssrf: false
      rxss: false

lovesh-ap added 12 commits August 14, 2024 10:54
@lovesh-ap
Adds Configuration for IAST_SCHEDULE and IAST_SCAN_IGNORE feature
9ecfd77 
Implements IAST_SCHEDULE
@lovesh-ap
Add feature to IAST_SCAN_IGNORE
8e12347
@lovesh-ap
Update gradle.properties to use 1.2.6 as json version
f7240dc
@lovesh-ap
fix for delay in start
eddc24c 
fix for event being generated for HTTP request and SYSTEM COMMAND
@lovesh-ap
fix for event being generated for HTTP request and SYSTEM COMMAND
16cbfb2
@lovesh-ap
fix shutting of agent after a certain duration
961457f
@lovesh-ap
Merge branch 'refs/heads/main' into feature/iast-skip-n-schedule
092cbab 
# Conflicts:
#	gradle.properties
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/AgentConfig.java
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/instrumentator/utils/InstrumentationUtils.java
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/intcodeagent/controlcommand/ControlCommandProcessor.java
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/intcodeagent/websocket/EventSendPool.java
#	newrelic-security-agent/src/main/java/com/newrelic/api/agent/security/Agent.java
#	newrelic-security-api/src/main/java/com/newrelic/api/agent/security/schema/HttpRequest.java
@lovesh-ap
Disable agent on incorrect config
9d2f10f
@lovesh-ap
Add feature to collect sample in IAST Scan deactivate mode.
bb427d7 
Fix default values of IAST scan ignore categories
Add feature to schedule via cron expression
@lovesh-ap
Null checks for NextScanTime and fir for nr logging IAE.
d29056c
@lovesh-ap
Shutdown agent if config is incorrect
9c7fe75 
Prevent multiple schedules of IAST trigger
@lovesh-ap
Fix jtds, postgress lock acquire case type.
f42659e 
Upgrade pool cleanups and reset
@lovesh-ap lovesh-ap requested a review from IshikaDawda August 20, 2024 04:31
@lovesh-ap lovesh-ap self-assigned this Aug 20, 2024
lovesh-ap and others added 16 commits August 20, 2024 12:13
@lovesh-ap
rename flag for always sample collections
5408c87
@IshikaDawda
NR-304574: Rate limit the IAST replay requests
ebe8789
@lovesh-ap
fix for incompatible data type for skip scan parameters
a729fca
@lovesh-ap
Update config fields
120ff86
@IshikaDawda
Merge branch 'refs/heads/feature/iast-skip-n-schedule' into feature/i…
530d844 
…ast-scan-rate-limit
@IshikaDawda
NR-304574: Rate limit the IAST replay requests
7b6e9c8 
the default value is 3600 replay req. per min
@IshikaDawda
NR-306872: Add test-identifier, process start time to websocket heade…
cfd9a05 
…rs for CI/CD Support
@IshikaDawda
roundup the value for currentFetchThreshold
1a98cb0
@IshikaDawda
remove dependency of start-time header on test-identifier header
7943117
@IshikaDawda
Merge branch 'refs/heads/feature/iast-skip-n-schedule' into feature/c…
c7cc91a 
…i-cd-support

# Conflicts:
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/AgentConfig.java
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/intcodeagent/websocket/WSClient.java
@IshikaDawda
Merge branch 'refs/heads/feature/iast-scan-rate-limit' into feature/c…
f84ba1f 
…i-cd-support
@lovesh-ap
agent version bump 1.4.2
721ed8e 
json version bump to 1.2.7
add procStartTime & scanStartTime to HealthCheck
@lovesh-ap
set scan start time on every NR IAST trigger
5ffd62d
@lovesh-ap
New Requirements Enhancing Health Checks with State Information
57be1b6
@lovesh-ap
rename fields according to NR-308822
30801b7
@IshikaDawda
Merge pull request #326 from newrelic/feature/ci-cd-support
99f3406 
NR-306872: IAST support for CI/CD
@IshikaDawda
Merge pull request #321 from newrelic/feature/iast-scan-rate-limit
bf9b27c 
NR-304574: Rate limit the IAST replay requests
@lovesh-ap lovesh-ap changed the base branch from main to feature/iast-restricted September 12, 2024 05:51
@lovesh-ap lovesh-ap changed the base branch from feature/iast-restricted to main September 12, 2024 06:07
@lovesh-ap lovesh-ap changed the base branch from main to feature/iast-restricted September 12, 2024 06:07
@lovesh-ap
Merge branch 'refs/heads/feature/iast-restricted' into feature/iast-s…
eaefcc4 
…kip-n-schedule

# Conflicts:
#	newrelic-security-agent/src/main/java/com/newrelic/agent/security/AgentConfig.java
#	newrelic-security-agent/src/main/java/com/newrelic/api/agent/security/Agent.java
@lovesh-ap
Use case type SQL for postgresSQL
3c679c5
@lovesh-ap lovesh-ap merged commit 6e2b124 into feature/iast-restricted Sep 12, 2024
4 checks passed
@lovesh-ap lovesh-ap deleted the feature/iast-skip-n-schedule branch September 12, 2024 06:40
This was referenced Sep 25, 2024
Merged
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@IshikaDawda IshikaDawda IshikaDawda approved these changes

Assignees

@lovesh-ap lovesh-ap

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@lovesh-ap @IshikaDawda