Merge pull request #53 from blackduck-inc/fix-enterprise-api-url

fix: update GitHub Enterprise API URL
- Add SarifData interface with optional validate property
- Implement createSarifData method to set validate flag based on GitHub API URL
ref: [SIGINT-2887], [SIGINT-2769]

Author: bd-SrinathAkkem

dist/index.js

@@ -1464,7 +1464,7 @@ class GithubClientServiceBase {
         this.repoName = this.githubRepo !== '' ? this.githubRepo.substring(this.githubRepo.indexOf('/') + 1, this.githubRepo.length).trim() : '';
         this.repoOwner = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_REPOSITORY_OWNER] || '';
         this.githubServerUrl = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_SERVER_URL] || '';
-        this.githubApiURL = this.githubServerUrl === constants.GITHUB_CLOUD_URL ? constants.GITHUB_CLOUD_API_URL : this.githubServerUrl;
+        this.githubApiURL = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_API_URL] || '';
         this.commit_sha = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_SHA] || '';
         this.githubRef = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_REF] || '';
     }
@@ -1484,12 +1484,7 @@ class GithubClientServiceBase {
                     const sarifContent = fs.readFileSync(sarifFilePath, 'utf8');
                     const compressedSarif = zlib.gzipSync(sarifContent);
                     const base64Sarif = compressedSarif.toString('base64');
-                    const data = {
-                        commit_sha: this.commit_sha,
-                        ref: this.githubRef,
-                        sarif: base64Sarif,
-                        validate: true
-                    };
+                    const data = this.createSarifData(base64Sarif);
                     do {
                         const httpClient = new HttpClient_1.HttpClient('GithubClientServiceBase');
                         const httpResponse = yield httpClient.post(endpoint, JSON.stringify(data), {
@@ -1535,6 +1530,17 @@ class GithubClientServiceBase {
             }
         });
     }
+    createSarifData(base64Sarif) {
+        const data = {
+            commit_sha: this.commit_sha,
+            ref: this.githubRef,
+            sarif: base64Sarif
+        };
+        if (this.githubApiURL === constants.GITHUB_CLOUD_API_URL) {
+            data.validate = true;
+        }
+        return data;
+    }
     retrySleepHelper(message, retryCountLocal, retryDelay) {
         return __awaiter(this, void 0, void 0, function* () {
             (0, core_1.info)(message
@@ -2803,14 +2809,13 @@ function run() {
                         yield (0, artifacts_1.uploadSarifReportAsArtifact)(constants.POLARIS_SARIF_GENERATOR_DIRECTORY, inputs.POLARIS_REPORTS_SARIF_FILE_PATH, constants.POLARIS_SARIF_ARTIFACT_NAME);
                     }
                     if (!(0, validators_1.isNullOrEmptyValue)(inputs.GITHUB_TOKEN)) {
+                        const gitHubClientService = yield github_client_service_factory_1.GitHubClientServiceFactory.getGitHubClientServiceInstance();
                         // Upload Black Duck SARIF Report to code scanning tab
                         if (inputs.BLACKDUCKSCA_URL && (0, utility_1.parseToBoolean)(inputs.BLACKDUCK_UPLOAD_SARIF_REPORT)) {
-                            const gitHubClientService = yield github_client_service_factory_1.GitHubClientServiceFactory.getGitHubClientServiceInstance();
                             yield gitHubClientService.uploadSarifReport(constants.BLACKDUCK_SARIF_GENERATOR_DIRECTORY, inputs.BLACKDUCKSCA_REPORTS_SARIF_FILE_PATH);
                         }
                         // Upload Polaris SARIF Report to code scanning tab
                         if (inputs.POLARIS_SERVER_URL && (0, utility_1.parseToBoolean)(inputs.POLARIS_UPLOAD_SARIF_REPORT)) {
-                            const gitHubClientService = yield github_client_service_factory_1.GitHubClientServiceFactory.getGitHubClientServiceInstance();
                             yield gitHubClientService.uploadSarifReport(constants.POLARIS_SARIF_GENERATOR_DIRECTORY, inputs.POLARIS_REPORTS_SARIF_FILE_PATH);
                         }
                     }

dist/index.js.map

@@ -0,0 +1,6 @@
+export interface SarifData {
+  commit_sha: string
+  ref: string
+  sarif: string
+  validate?: boolean
+}

src/blackduck-security-action/input-data/sarif-data.ts

@@ -6,6 +6,7 @@ import {checkIfPathExists, getDefaultSarifReportPath, sleep} from '../../utility
 import {debug, info} from '@actions/core'
 import * as constants from '../../../application-constants'
 import {GithubClientServiceInterface} from '../github-client-service-interface'
+import {SarifData} from '../../input-data/sarif-data'
 
 export class GithubClientServiceBase implements GithubClientServiceInterface {
   gitHubCodeScanningUrl: string
@@ -25,7 +26,7 @@ export class GithubClientServiceBase implements GithubClientServiceInterface {
     this.repoName = this.githubRepo !== '' ? this.githubRepo.substring(this.githubRepo.indexOf('/') + 1, this.githubRepo.length).trim() : ''
     this.repoOwner = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_REPOSITORY_OWNER] || ''
     this.githubServerUrl = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_SERVER_URL] || ''
-    this.githubApiURL = this.githubServerUrl === constants.GITHUB_CLOUD_URL ? constants.GITHUB_CLOUD_API_URL : this.githubServerUrl
+    this.githubApiURL = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_API_URL] || ''
     this.commit_sha = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_SHA] || ''
     this.githubRef = process.env[constants.GITHUB_ENVIRONMENT_VARIABLES.GITHUB_REF] || ''
   }
@@ -45,12 +46,7 @@ export class GithubClientServiceBase implements GithubClientServiceInterface {
         const sarifContent = fs.readFileSync(sarifFilePath, 'utf8')
         const compressedSarif = zlib.gzipSync(sarifContent)
         const base64Sarif = compressedSarif.toString('base64')
-        const data = {
-          commit_sha: this.commit_sha,
-          ref: this.githubRef,
-          sarif: base64Sarif,
-          validate: true
-        }
+        const data = this.createSarifData(base64Sarif)
         do {
           const httpClient = new HttpClient('GithubClientServiceBase')
           const httpResponse = await httpClient.post(endpoint, JSON.stringify(data), {
@@ -91,6 +87,18 @@ export class GithubClientServiceBase implements GithubClientServiceInterface {
     }
   }
 
+  private createSarifData(base64Sarif: string): SarifData {
+    const data: SarifData = {
+      commit_sha: this.commit_sha,
+      ref: this.githubRef,
+      sarif: base64Sarif
+    }
+    if (this.githubApiURL === constants.GITHUB_CLOUD_API_URL) {
+      data.validate = true
+    }
+    return data
+  }
+
   private async retrySleepHelper(message: string, retryCountLocal: number, retryDelay: number): Promise<number> {
     info(
       message

src/blackduck-security-action/service/impl/github-client-service-base.ts

@@ -64,14 +64,13 @@ export async function run() {
           await uploadSarifReportAsArtifact(constants.POLARIS_SARIF_GENERATOR_DIRECTORY, inputs.POLARIS_REPORTS_SARIF_FILE_PATH, constants.POLARIS_SARIF_ARTIFACT_NAME)
         }
         if (!isNullOrEmptyValue(inputs.GITHUB_TOKEN)) {
+          const gitHubClientService = await GitHubClientServiceFactory.getGitHubClientServiceInstance()
           // Upload Black Duck SARIF Report to code scanning tab
           if (inputs.BLACKDUCKSCA_URL && parseToBoolean(inputs.BLACKDUCK_UPLOAD_SARIF_REPORT)) {
-            const gitHubClientService = await GitHubClientServiceFactory.getGitHubClientServiceInstance()
             await gitHubClientService.uploadSarifReport(constants.BLACKDUCK_SARIF_GENERATOR_DIRECTORY, inputs.BLACKDUCKSCA_REPORTS_SARIF_FILE_PATH)
           }
           // Upload Polaris SARIF Report to code scanning tab
           if (inputs.POLARIS_SERVER_URL && parseToBoolean(inputs.POLARIS_UPLOAD_SARIF_REPORT)) {
-            const gitHubClientService = await GitHubClientServiceFactory.getGitHubClientServiceInstance()
             await gitHubClientService.uploadSarifReport(constants.POLARIS_SARIF_GENERATOR_DIRECTORY, inputs.POLARIS_REPORTS_SARIF_FILE_PATH)
           }
         }