-
Notifications
You must be signed in to change notification settings - Fork 1
/
single_jira_for_all_sca_issues.py
57 lines (43 loc) · 1.64 KB
/
single_jira_for_all_sca_issues.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
import requests
import os
import json
from helpers import *
# verify environment before starting
checkEnv()
# create our headers for api request
headers = {
'Authorization': 'token {}'.format(os.getenv(SNYK_TOKEN)),
'Content-Type': 'application/json'
}
# Specify dependency details
package_mgr = 'npm'
package_name = 'express-jwt'
package_version = '0.1.3'
# make API request to get issues
response = requests.get('{}/test/{}/{}/{}'.format(BASE_URL, package_mgr, package_name, package_version), headers=headers)
# dump json results with issues to dict
issues_response_json = json.loads(response.content)
issues_dict = issues_response_json['issues']['vulnerabilities']
# Specify jira ticket details
jira_project_key = 'GOOF' # Specify a project in your Jira org
jira_issue_type = 'Task' # Specify an issue type (e.g., Task or Epic)
project_id = 'bc498bb1-1c46-4ad8-b5c7-2ad7bdeafb39' # Specify a Snyk project ID
issue_id = 'SNYK-JAVA-COMFASTERXMLJACKSONCORE-31520' # Specify Snyk issue ID
description = ""
for issue in issues_dict:
description += issue['id'] + "\n" + issue['url']
description += '\n\n'
body = {
'fields': {
'project': {
'key': jira_project_key
},
'issuetype': {
'name': jira_issue_type
},
'summary': 'Direct and/or transitive issues identified for {}@{}'.format(package_name, package_version),
'description': description
}
}
response = requests.post('{}/org/{}/project/{}/issue/{}/jira-issue'.format(BASE_URL, os.getenv(ORG_ID), project_id, issue_id), headers=headers, data=json.dumps(body))
print(response)